Commit 45ce9885 authored Sep 11, 2023 by Vijay Anusuri Committed by Steve Sakoman Sep 11, 2023

qemu: Backport fix for CVE-2023-0330

A DMA-MMIO reentrancy problem may lead to memory corruption bugs
like stack overflow or use-after-free.

Summary of the problem from Peter Maydell:
https://lore.kernel.org/qemu-devel/CAFEAcA_23vc7hE3iaM-JVA6W38LK4hJoWae5KcknhPRD5fPBZA@mail.gmail.com

Reference:
https://gitlab.com/qemu-project/qemu/-/issues/556



qemu.git$ git log --no-merges --oneline   --grep CVE-2023-0330
b987718bbb hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller (CVE-2023-0330)
a2e1753b80 memory: prevent dma-reentracy issues

Included second commit as well as commit log of a2e1753b80 says it
resolves CVE-2023-0330

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

parent edbc1731

Show whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 14aa11ae
· Nov 19, 2023

mentioned in commit 14aa11ae

mentioned in commit 14aa11aecf503cef08e43c90cf0bd574721ca965

Toggle commit list

Please register or to comment