[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [PATCH 0/4] migration: fix CVE-2014-7840
From: |
Michael S. Tsirkin |
Subject: |
[Qemu-devel] [PATCH 0/4] migration: fix CVE-2014-7840 |
Date: |
Wed, 12 Nov 2014 11:44:35 +0200 |
This patchset fixes CVE-2014-7840: invalid
migration stream can cause arbitrary qemu memory
overwrite.
First patch includes the minimal fix for the issue.
Follow-up patches on top add extra checking to reduce the
chance this kind of bug recurs.
Note: these are already (tentatively-pending review)
queued in my tree, so only review/ack
is necessary.
Michael S. Tsirkin (4):
migration: fix parameter validation on ram load
exec: add wrapper for host pointer access
cpu: assert host pointer offset within block
cpu: verify that block->host is set
include/exec/cpu-all.h | 7 +++++++
arch_init.c | 5 +++--
exec.c | 10 +++++-----
3 files changed, 15 insertions(+), 7 deletions(-)
--
MST
- [Qemu-devel] [PATCH 0/4] migration: fix CVE-2014-7840,
Michael S. Tsirkin <=
[Qemu-devel] [PATCH 3/4] cpu: assert host pointer offset within block, Michael S. Tsirkin, 2014/11/12
[Qemu-devel] [PATCH 4/4] cpu: verify that block->host is set, Michael S. Tsirkin, 2014/11/12
Re: [Qemu-devel] [PATCH 0/4] migration: fix CVE-2014-7840, Amit Shah, 2014/11/17