[Qemu-devel] [PATCH] SCSI improved LBA-out-of-range checks

Paolo, List Please find a small patch to the scsi emulation. This patch improves the checkign that the requested lbas are all available. We check both that lba+len is not going past the end of the device but also iflba+len < lba This second condition could occur for deviously crafted scsi pa

[Qemu-devel] [PATCH] SCSI improved LBA-out-of-range checks BUGFIX

Paolo, Sorry but the previous patch was bad. Use this patch instead it uses the correct check of if (r->req.cmd.lba > r->req.cmd.lba + len || r->req.cmd.lba + len > s->qdev.max_lba + 1) {