A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands. CREATE(Triage):(User=admin) [CVE-2019-18389|https://nvd.nist.gov/vuln/detail/CVE-2019-18389]