]> xenbits.xensource.com Git - qemu-upstream-4.6-testing.git/commit
projects / qemu-upstream-4.6-testing.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a028c96) | patch
pcnet: fix rx buffer overflow(CVE-2015-7512)
authorJason Wang <jasowang@redhat.com>
Mon, 30 Nov 2015 07:00:06 +0000 (15:00 +0800)
committerStefano Stabellini <stefano.stabellini@eu.citrix.com>
Fri, 5 Feb 2016 13:58:51 +0000 (13:58 +0000)
commit75c57190671cd2cfdfbbc448fb3c752dc46018d8
treee75d8e15adce82b25cb241d9552deaa2c5f384a6tree
parenta028c96f0f10db221e07eb0524c01b77aaa42341commit | diff
pcnet: fix rx buffer overflow(CVE-2015-7512)

Backends could provide a packet whose length is greater than buffer
size. Check for this and truncate the packet to avoid rx buffer
overflow in this case.

Cc: Prasad J Pandit <pjp@fedoraproject.org>
Cc: qemu-stable@nongnu.org
Reviewed-by: Michael S. Tsirkin <mst@redhat.com>
Signed-off-by: Jason Wang <jasowang@redhat.com>
hw/net/pcnet.c diff | blob | history
Obsolete Upstream Qemu based repository for xen-4.6-testing