CVE-2020-13362

2020-05-28T15:15:00
ID CVE-2020-13362
Type cve
Reporter cve@mitre.org
Modified 2020-08-26T21:15:00

Description

In QEMU 5.0.0 and earlier, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted reply_queue_head field from a guest OS user.