On Thu, May 28, 2026 at 12:03:28AM +0800, Jia Jia wrote: > virtio_blk_handle_scsi() only validates the input/output descriptor > counts and then unconditionally treats the second-to-last input > descriptor as a struct virtio_scsi_inhdr.
Hi, A fix for this is already available here and is currently under review: https://lore.kernel.org/qemu-devel/[email protected]/ Please review and test the fix if you have time. Thanks! Stefan
signature.asc
Description: PGP signature
