dma mmio reentrancy

The tag dma mmio reentrancy covers a specific class of security vulnerability affecting QEMU virtual machine emulation. Based on available content, this tag is associated with CVE-2023-0330, a flaw in QEMU's LSI Logic SCSI device implementation. The bug allows a malicious guest to trigger DMA operations that re-enter the MMIO path, leading to stack overflow or use-after-free conditions in the host QEMU process. This results in a denial of service by crashing the host. The vulnerability requires local guest privileges and careful triggering, making it a high-impact availability issue for multi-tenant or untrusted VM environments. Patching and mitigation are critical for affected systems.