falso
/
qemu-irix
mirror of https://github.com/n64decomp/qemu-irix.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
qemu-irix/hw
History
P J P 7aa2bcad0c net: add checks to validate ring buffer pointers(CVE-2015-5279) 
Ne2000 NIC uses ring buffer of NE2000_MEM_SIZE(49152)
bytes to process network packets. While receiving packets
via ne2000_receive() routine, a local 'index' variable
could exceed the ring buffer size, which could lead to a
memory buffer overflow. Added other checks at initialisation.

Reported-by: Qinghao Tang <luodalongde@gmail.com>
Signed-off-by: P J P <pjp@fedoraproject.org>
Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
(cherry picked from commit 9bbdbc66e5)
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
 		2015-09-21 17:04:14 -05:00
..
9pfs virtio: get_features() can fail 2015-07-27 18:11:53 +03:00
acpi hw/acpi/ich9: clean up stale comment about KVM not supporting SMM 2015-07-27 22:44:47 +03:00
alpha
arm musicpal: Drop eth_can_receive 2015-07-20 17:47:24 +01:00
audio
block virtio-blk-dataplane: delete bottom half before the AioContext is freed 2015-07-29 10:02:06 +01:00
bt
char virtio: get_features() can fail 2015-07-27 18:11:53 +03:00
core pc,virtio: fixes for 2.4 2015-07-13 13:35:51 +01:00
cpu
cris
display virtio fixes for 2.4 2015-07-28 17:09:56 +01:00
dma
gpio
i2c
i386 acpi: fix pvpanic device is not shown in ui 2015-07-27 23:55:27 +03:00
ide Fix release_drive on unplugged devices (pci_piix3_xen_ide_unplug) 2015-08-03 14:27:12 +00:00
input virtio: get_features() can fail 2015-07-27 18:11:53 +03:00
intc xics_kvm: Don't enable KVM_CAP_IRQ_XICS if already enabled 2015-07-07 17:44:52 +02:00
ipack
isa ich9: implement strap SPKR pin logic 2015-07-08 10:09:55 +03:00
lm32
m68k
mem
microblaze microblaze: boot: Use cpu_set_pc() 2015-07-09 15:20:40 +02:00
mips
misc
moxie
net net: add checks to validate ring buffer pointers(CVE-2015-5279) 2015-09-21 17:04:14 -05:00
nvram spapr: Merge sPAPREnvironment into sPAPRMachineState 2015-07-07 17:44:50 +02:00
openrisc
pci pci_add_capability: remove duplicate comments 2015-07-20 14:19:41 +03:00
pci-bridge
pci-host
pcmcia
ppc timer: rename NSEC_PER_SEC due to Mac OS X header clash 2015-07-20 17:01:00 +01:00
s390x s390/virtio-ccw: Fix migration 2015-07-14 19:10:03 +02:00
scsi virtio fixes for 2.4 2015-07-28 17:09:56 +01:00
sd
sh4
sparc
sparc64
ssi
timer timer: rename NSEC_PER_SEC due to Mac OS X header clash 2015-07-20 17:01:00 +01:00
tpm
tricore
unicore32
usb usbnet: Drop usbnet_can_receive 2015-07-27 14:12:18 +01:00
vfio vfio/pci: Fix bootindex 2015-07-22 14:56:01 -06:00
virtio virtio: fix 1.0 virtqueue migration 2015-08-05 16:56:34 +03:00
watchdog watchdog/diag288: correctly register for system reset requests 2015-07-14 19:10:03 +02:00
xen
xenpv
xtensa
Makefile.objs