CVE request Qemu: usb: xHCI: infinite loop vulnerability in xhci_ring_fetch

[P J P <ppandit () redhat com>]

  Hello,

Quick Emulator(Qemu) built with the USB xHCI controller emulation support is 
vulnerable to an infinite loop issue. It could occur while processing USB 
command ring in 'xhci_ring_fetch'.

A privileged user/process inside guest could use this issue to crash the Qemu 
process on the host leading to DoS.

Upstream patch
--------------
  -> https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01265.html

This issue was reported by Li Qiang of 360.cn Inc.

Thank you.
--
Prasad J Pandit / Red Hat Product Security Team
47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F