| commit | b0b900070c7cb29bbefb732ec00397abe5de6d73 | |
| author | Michael S. Tsirkin <mst@redhat.com> | |
| Mon, 12 Jul 2010 17:24:59 +0000 (12 20:24 +0300) | ||
| committer | Michael S. Tsirkin <mst@redhat.com> | |
| Mon, 19 Jul 2010 10:49:19 +0000 (19 13:49 +0300) | ||
| tree | cdf5929f0575af0eb10a701564f79c12004bef58 | treesnapshot (tar.gz zip) |
| parent | d67eb20f6a387a10475b945c9e91fe2a00cffd93 | commitdiff |
e1000: fix access 4 bytes beyond buffer end
We do range check for size, and get size as buffer,
but copy size + 4 bytes (4 is for FCS).
Let's copy size bytes but put size + 4 in length.
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
We do range check for size, and get size as buffer,
but copy size + 4 bytes (4 is for FCS).
Let's copy size bytes but put size + 4 in length.
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
| hw/e1000.c | diffblobblamehistory |