summaryrefslogtreecommitdiff
path: root/scripts
diff options
context:
space:
mode:
authorHongxu Jia <hongxu.jia@windriver.com>2018-04-24 15:37:50 +0800
committerRichard Purdie <richard.purdie@linuxfoundation.org>2018-05-04 09:54:59 +0100
commit0d8f68fe43b4da1a0d356fe6bedb52b8f2a02081 (patch)
treeca1ef4a635813503fa3f15845e1782d4be50ded9 /scripts
parentf6ac06967905686cc3974a3524c89cb74af22a16 (diff)
downloadopenembedded-core-0d8f68fe43b4da1a0d356fe6bedb52b8f2a02081.tar.gz
openembedded-core-0d8f68fe43b4da1a0d356fe6bedb52b8f2a02081.tar.bz2
openembedded-core-0d8f68fe43b4da1a0d356fe6bedb52b8f2a02081.zip
qemu: fix CVE-2017-16845
During Qemu guest migration, a destination process invokes ps2 post_load function. In that, if 'rptr' and 'count' values were invalid, it could lead to OOB access or infinite loop issue. Add check to avoid it. Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
Diffstat (limited to 'scripts')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-23 18:22:06 +0000