falso
/
qemu-irix
mirror of https://github.com/n64decomp/qemu-irix.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
qemu-irix/hw/scsi
History
Prasad J Pandit 27fa5e735a scsi: esp: make cmdbuf big enough for maximum CDB size 
While doing DMA read into ESP command buffer 's->cmdbuf', it could
write past the 's->cmdbuf' area, if it was transferring more than 16
bytes.  Increase the command buffer size to 32, which is maximum when
's->do_cmd' is set, and add a check on 'len' to avoid OOB access.

Reported-by: Li Qiang <liqiang6-s@360.cn>
Signed-off-by: Prasad J Pandit <pjp@fedoraproject.org>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
(cherry picked from commit 926cde5f3e)
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
 		2016-08-09 14:31:04 -05:00
..
Makefile.objs hw: Add support for LSI SAS1068 (mptsas) device 2016-02-09 15:45:26 +01:00
esp-pci.c include/qemu/osdep.h: Don't include qapi/error.h 2016-03-22 22:20:15 +01:00
esp.c scsi: esp: make cmdbuf big enough for maximum CDB size 2016-08-09 14:31:04 -05:00
lsi53c895a.c hw/scsi: Clean up includes 2016-01-29 15:07:24 +00:00
megasas.c scsi: megasas: check 'read_queue_head' index value 2016-08-09 14:30:08 -05:00
mfi.h megasas: add MegaRAID SAS 2108 emulation 2014-10-31 11:29:00 +01:00
mpi.h hw: Add support for LSI SAS1068 (mptsas) device 2016-02-09 15:45:26 +01:00
mptconfig.c mptsas: add missing va_end 2016-02-16 16:41:17 +01:00
mptendian.c hw: Add support for LSI SAS1068 (mptsas) device 2016-02-09 15:45:26 +01:00
mptsas.c scsi: mptsas: infinite loop while fetching requests 2016-08-05 13:32:04 -05:00
mptsas.h hw: Add support for LSI SAS1068 (mptsas) device 2016-02-09 15:45:26 +01:00
scsi-bus.c util: move declarations out of qemu-common.h 2016-03-22 22:20:17 +01:00
scsi-disk.c util: move declarations out of qemu-common.h 2016-03-22 22:20:17 +01:00
scsi-generic.c scsi: Advertise limits by blocksize, not 512 2016-08-05 15:09:13 -05:00
spapr_vscsi.c Fix some typos found by codespell 2016-08-05 16:14:47 -05:00
srp.h spapr-vscsi: add task management 2013-09-12 08:46:21 +02:00
vhost-scsi.c util: move declarations out of qemu-common.h 2016-03-22 22:20:17 +01:00
viosrp.h hw: move private headers to hw/ subdirectories. 2013-04-08 18:13:16 +02:00
virtio-scsi-dataplane.c virtio: merge virtio_queue_aio_set_host_notifier_handler with virtio_queue_set_aio 2016-04-07 19:57:33 +03:00
virtio-scsi.c virtio-scsi: use aio handler for data plane 2016-04-07 19:57:33 +03:00
vmw_pvscsi.c Fix some typos found by codespell 2016-08-05 16:14:47 -05:00
vmw_pvscsi.h scsi: VMWare PVSCSI paravirtual device implementation 2013-04-19 10:44:17 +02:00