Red Hat Security Advisory 2011-1401-01 - The xen packages contain administration tools and the xend service for managing the kernel-xen kernel for virtualization on Red Hat Enterprise Linux. A buffer overflow flaw was found in the Xen hypervisor SCSI subsystem emulation. An unprivileged, local guest user could provide a large number of bytes that are used to zero out a fixed-sized buffer via a SAI READ CAPACITY SCSI command, overwriting memory and causing the guest to crash. Other bugs were also addressed.
2f2b78e70a47ae7e65cf72559444cdbe6211ab9f782098b9d29e2d9c98b25151