aboutsummaryrefslogtreecommitdiff
path: root/kvm-stub.c
diff options
context:
space:
mode:
authorP J P <pjp@fedoraproject.org>2015-09-15 16:46:59 +0530
committerMichael Roth <mdroth@linux.vnet.ibm.com>2015-09-21 17:04:22 -0500
commit5a1ccdfe44946e726b4c6fda8a4493b3931a68c1 (patch)
tree014d80860fcfad2a55a71b72b985ac90f1944b98 /kvm-stub.c
parent7aa2bcad0ca837dd6d4bf4fa38a80314b4a6b755 (diff)
net: avoid infinite loop when receiving packets(CVE-2015-5278)
Ne2000 NIC uses ring buffer of NE2000_MEM_SIZE(49152) bytes to process network packets. While receiving packets via ne2000_receive() routine, a local 'index' variable could exceed the ring buffer size, leading to an infinite loop situation. Reported-by: Qinghao Tang <luodalongde@gmail.com> Signed-off-by: P J P <pjp@fedoraproject.org> Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com> (cherry picked from commit 737d2b3c41d59eb8f94ab7eb419b957938f24943) Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
Diffstat (limited to 'kvm-stub.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.26.2) at 2024-11-23 10:49:05 +0000