Hello Mark,
I tested on fixed version, and checked that it does not trigger the
assertion failure.
Thanks,
- Cheolwoo Myung
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1919036
Title:
Assertion
e QEMU with the following
command line.
```
$ ./qemu-system-i386 -m 512 -drive
file=./hyfuzz.img,index=0,media=disk,format=raw -device am53c974,id=scsi
-device scsi-hd,drive=SysDisk -drive id=SysDisk,if=none,file=./disk.img
```
Please let me know if I can provide any further info.
Thank you.
5
```
To reproduce the assertion failure, please run the QEMU with the following
command line.
```
$ ./qemu-system-i386 -m 512 -drive
file=./hyfuzz.img,index=0,media=disk,format=raw -device am53c974,id=scsi
-device scsi-hd,drive=SysDisk -drive id=SysDisk,if=none,file=./disk.img
```
Please let me
** Description changed:
On executing the attached python script in the guest OS, QEMU dies with
assert failure:
[run python script in guest root shell]
# python a.py
[host message]
qemu-system-x86_64: hw/usb/dev-storage.c:445: usb_msd_handle_data: Assertion
`le32_to_cpu(s->csw.r
Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
nec-usb-xhci emulator.
A malicious guest user/process could use this flaw to abort the QEMU
process on the host, resulting in a denial of service.
This was found in version 5.2.0 (master,
51db2d7cf26d05a961ec0ee0eb773594b32cc4a
