ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330

...

SUSE CVE-2015-6855

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

The vulnerability of the QEMU hardware emulation software allows a hacker to trigger a service failure or cause some other unknown effect.

The vulnerability of the QEMU hardware emulation software is related to incorrect restrictions on commands received from ATAPI devices. Exploiting this vulnerability can allow a malicious actor to cause service failures or potentially have other unspecified effects by using certain IDE commands...

qemu: ide: atapi: heap overflow during I/O buffer memory access

A heap buffer overflow flaw was found in the way QEMU's IDE subsystem handled I/O buffer access while processing certain ATAPI commands. A privileged guest user in a guest with the CDROM drive enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...

qemu: ide: atapi: heap overflow during I/O buffer memory access

A heap buffer overflow flaw was found in the way QEMU's IDE subsystem handled I/O buffer access while processing certain ATAPI commands. A privileged guest user in a guest with the CDROM drive enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...