| commit | c8eac1cfa1e9104a658b4614ada758861b8d823a | |
| author | Michael S. Tsirkin <mst@redhat.com> | |
| Mon, 20 Jun 2011 10:42:27 +0000 (20 13:42 +0300) | ||
| committer | Michael S. Tsirkin <mst@redhat.com> | |
| Sun, 17 Jul 2011 15:47:34 +0000 (17 18:47 +0300) | ||
| tree | 6f8207e0e7a006386d6cec4d7aa1634f4282254d | treesnapshot (tar.gz zip) |
| parent | 0d2b962d16feaf1eb1a4658a4c1b85642418cd07 | commitdiff |
virtio: fix indirect descriptor buffer overflow
We were previously allowing arbitrarily-long indirect descriptors, which
could lead to a buffer overflow in qemu-kvm process.
CVE-2011-2212
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
We were previously allowing arbitrarily-long indirect descriptors, which
could lead to a buffer overflow in qemu-kvm process.
CVE-2011-2212
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
| hw/virtio.c | diffblobblamehistory |