]> git.proxmox.com Git - mirror_qemu.git/commit
projects / mirror_qemu.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: daa500c) | patch
hw/pvrdma: Protect against buggy or malicious guest driver
authorYuval Shaia <yuval.shaia.ml@gmail.com>
Sun, 3 Apr 2022 09:52:34 +0000 (12:52 +0300)
committerLaurent Vivier <laurent@vivier.eu>
Mon, 16 Jan 2023 17:49:38 +0000 (18:49 +0100)
commit31c4b6fb0293e359f9ef8a61892667e76eea4c99
tree166238b28d80f3fd481719f84364710830f766f3tree
parentdaa500cab6a4f8fdaa1a0689a5d39a6b67213801commit | diff
hw/pvrdma: Protect against buggy or malicious guest driver

Guest driver might execute HW commands when shared buffers are not yet
allocated.
This could happen on purpose (malicious guest) or because of some other
guest/host address mapping error.
We need to protect againts such case.

Fixes: CVE-2022-1050
Reported-by: Raven <wxhusst@gmail.com>
Signed-off-by: Yuval Shaia <yuval.shaia.ml@gmail.com>
Message-Id: <20220403095234.2210-1-yuval.shaia.ml@gmail.com>
Signed-off-by: Laurent Vivier <laurent@vivier.eu>
hw/rdma/vmw/pvrdma_cmd.c diff | blob | blame | history
QEMU mirror