git.proxmox.com Git - pve-qemu.git/commit

author	Oguz Bektas <o.bektas@proxmox.com>
	Thu, 6 Feb 2020 14:25:49 +0000 (15:25 +0100)
committer	Thomas Lamprecht <t.lamprecht@proxmox.com>
	Fri, 6 Mar 2020 14:17:29 +0000 (15:17 +0100)
commit	284d3b2cabef10362a574efe209d1d406f351dfa
tree	82d90abe599ebb5ce628191f524cdf352bfbbb9b	tree
parent	ee8bd5bfbe81a3c24d2aa3306f5e060bff86c353	commit \| diff

security patches for libslirp CVE-2020-8608

original commits and email can be found here[0]

A out-of-bounds heap buffer access issue was found in the SLiRP
networking implementation of the QEMU emulator. It occurs in tcp_emu()
routine while emulating IRC and other protocols due to unsafe usage of
snprintf(3) function.

A user/process could use this flaw to crash the Qemu process on the host
resulting in DoS or potentially execute arbitrary code with privileges
of the QEMU process on the host.

[0]: https://seclists.org/oss-sec/2020/q1/64

Signed-off-by: Oguz Bektas <o.bektas@proxmox.com>
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

debian/patches/extra/0004-util-add-slirp_fmt-helpers.patch	[new file with mode: 0644]	blob
debian/patches/extra/0005-tcp_emu-fix-unsafe-snprintf-usages.patch	[new file with mode: 0644]	blob
debian/patches/series		diff \| blob \| blame \| history