SYS-OSS/FRET-qemu
4
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
FRET-qemu/hw
History
Gonglei a08aaff811 virtio-crypto: fix possible integer and heap overflow 
Because the 'size_t' type is 4 bytes in 32-bit platform, which
is the same with 'int'. It's easy to make 'max_len' to zero when
integer overflow and then cause heap overflow if 'max_len' is zero.

Using uint_64 instead of size_t to avoid the integer overflow.

Cc: qemu-stable@nongnu.org
Reported-by: Li Qiang <liqiang6-s@360.cn>
Signed-off-by: Gonglei <arei.gonglei@huawei.com>
Tested-by: Li Qiang <liqiang6-s@360.cn>
Reviewed-by: Michael S. Tsirkin <mst@redhat.com>
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
2017-01-10 05:56:58 +02:00
..
9pfs
9pfs: fix P9_NOTAG and P9_NOFID macros
2017-01-03 17:28:44 +01:00
acpi
nvdimm acpi: introduce NVDIMM_DSM_MEMORY_SIZE
2016-11-15 17:20:37 +02:00
adc
STM32F2xx: Add the ADC device
2016-10-04 13:28:07 +01:00
alpha
Move target-* CPU file into a target/ folder
2016-12-20 21:52:12 +01:00
arm
hw/arm/virt-acpi-build: Don't incorrectly claim architectural timer to be edge-triggered
2017-01-09 11:40:23 +00:00
audio
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
block
m25p80: don't let rogue SPI controllers cause buffer overruns
2017-01-09 11:40:23 +00:00
bt
char: replace avail_connections
2016-10-24 15:46:10 +02:00
char
hw/char: QOM'ify exynos4210_uart.c
2017-01-09 11:40:21 +00:00
core
loader: fix undefined behavior in rom_order_compare()
2016-11-30 04:22:18 +02:00
cpu
cpu: Abstract CPU core type
2016-06-17 16:33:48 +10:00
cris
cris: Fix broken header guard in hw/cris/boot.h
2016-07-12 16:20:46 +02:00
display
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
dma
hw/dma/pl080: Fix bad bit mask (PL080_CONF_M1 | PL080_CONF_M1)
2016-10-17 19:22:17 +01:00
gpio
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
i2c
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
i386
intel_iommu: allow migration
2017-01-10 05:56:58 +02:00
ide
atapi: classify read_cd as conditionally returning data
2016-11-14 11:15:54 -05:00
input
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
intc
hw/intc/arm_gicv3: Don't signal Pending+Active interrupts to CPU
2016-12-27 14:59:25 +00:00
ipack
ipack: Update e-mail address
2016-05-18 15:04:27 +03:00
ipmi
ipmi: fix qemu crash while migrating with ipmi
2016-11-18 17:50:09 +02:00
isa
char: remove init callback
2016-10-24 15:27:20 +02:00
lm32
loader: fix handling of custom address spaces when adding ROM blobs
2016-11-30 04:20:57 +02:00
m68k
m68k: change default system clock for m5208evb
2016-10-08 11:25:29 +03:00
mem
pc: memhp: enable nvdimm device hotplug
2016-11-01 19:21:09 +02:00
microblaze
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
mips
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
misc
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
moxie
hw: explicitly include qemu-common.h and cpu.h
2016-03-22 22:20:17 +01:00
net
fsl_etsec: Fix Tx BD ring wrapping handling
2017-01-06 10:38:21 +08:00
nvram
fw_cfg: move FW_CFG_NB_CPUS out of fw_cfg_init1()
2016-11-16 12:09:58 -02:00
openrisc
hw: explicitly include qemu-common.h and cpu.h
2016-03-22 22:20:17 +01:00
pci
pci: fix error message for express slots
2016-12-16 01:14:38 +02:00
pci-bridge
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
pci-host
ppc: Make uninorth interrupt swizzling identical to Grackle
2016-11-23 12:00:48 +11:00
pcmcia
hw: Clean up includes
2016-01-29 15:07:25 +00:00
ppc
Move target-* CPU file into a target/ folder
2016-12-20 21:52:12 +01:00
s390x
virtio: avoid using guest_notifier_mask in vhost-user mode
2016-12-16 01:14:54 +02:00
scsi
virtio-scsi: suppress virtqueue kick during processing
2017-01-03 16:38:49 +00:00
sd
vmstateify ssi-sd
2016-09-22 18:13:08 +01:00
sh4
Move target-* CPU file into a target/ folder
2016-12-20 21:52:12 +01:00
smbios
smbios: fix uuid copy
2016-09-29 11:43:22 +08:00
sparc
fw_cfg: move FW_CFG_NB_CPUS out of fw_cfg_init1()
2016-11-16 12:09:58 -02:00
sparc64
fw_cfg: move FW_CFG_NB_CPUS out of fw_cfg_init1()
2016-11-16 12:09:58 -02:00
ssi
hw/ssi/imx_spi.c: Remove MSGDATA register support
2017-01-09 11:50:23 +00:00
timer
i2c: Allow I2C devices to NAK start events
2017-01-09 11:40:20 +00:00
tpm
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
tricore
tricore: remove useless cast
2016-09-15 15:32:22 +03:00
unicore32
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
usb
xen: attach pvusb usb bus to backend qdev
2016-11-22 10:29:41 -08:00
vfio
vfio: Add support for mmapping sub-page MMIO BARs
2016-10-31 09:53:04 -06:00
virtio
virtio-crypto: fix possible integer and heap overflow
2017-01-10 05:56:58 +02:00
watchdog
watchdog: 6300esb: add exit function
2016-12-22 16:00:23 +01:00
xen
xen: create qdev for each backend device
2016-11-22 10:29:39 -08:00
xenpv
xenpv: Fix qemu_uuid compiling error
2016-09-29 11:43:17 +08:00
xtensa
char: remove init callback
2016-10-24 15:27:20 +02:00
Makefile.objs
STM32F2xx: Add the ADC device
2016-10-04 13:28:07 +01:00