Commit ed4f86e8 authored Sep 07, 2017 by Prasad J Pandit Committed by Paolo Bonzini Sep 19, 2017

multiboot: validate multiboot header address values



While loading kernel via multiboot-v1 image, (flags & 0x00010000)
indicates that multiboot header contains valid addresses to load
the kernel image. These addresses are used to compute kernel
size and kernel text offset in the OS image. Validate these
address values to avoid an OOB access issue.

This is CVE-2017-14167.

Reported-by: Thomas Garnier <thgarnie@google.com>
Signed-off-by: Prasad J Pandit <pjp@fedoraproject.org>
Message-Id: <20170907063256.7418-1-ppandit@redhat.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

parent 80cac47e

Show whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit fca5f37f
· Dec 16, 2019

mentioned in commit fca5f37f

mentioned in commit fca5f37fe9016cfea90c31d3e35e4154ef1a7f28

Toggle commit list

Please register or to comment