Launchpad.net

CVE 2018-18849

In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msg_len value.

See the CVE page on Mitre.org for more details.