openkylin/qemu - qemu - 红山开源项目托管

Commit Graph

Author	SHA1	Message	Date
Thomas Huth	46eeafe26b	hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller (CVE-2023-0330) We cannot use the generic reentrancy guard in the LSI code, so we have to manually prevent endless reentrancy here. The problematic lsi_execute_script() function has already a way to detect whether too many instructions have been executed - we just have to slightly change the logic here that it also takes into account if the function has been called too often in a reentrant way. The code in fuzz-lsi53c895a-test.c has been taken from an earlier patch by Mauro Matteo Cascella. Resolves: https://gitlab.com/qemu-project/qemu/-/issues/1563 Message-Id: <20230522091011.1082574-1-thuth@redhat.com> Reviewed-by: Stefan Hajnoczi <stefanha@redhat.com> Reviewed-by: Alexander Bulekov <alxndr@bu.edu> Signed-off-by: Thomas Huth <thuth@redhat.com> Signed-off-by: zeng_chi <zengchi@kylinos.cn>	2023-09-25 14:25:01 +08:00
Christian Ehrhardt	f91bd02a0c	roms as dependencies won't be available in packaged qemu Forwarded: no Last-Update: 2022-01-05 Due to the removal of blobs the packaging will not have the roms dependency set and would fail at configure stage with: ../../tests/qtest/meson.build:272:2: ERROR: Unknown variable "roms". Switch it back to the former empty intializer. Gbp-Pq: Name ignore-roms-dependency-in-qtest.patch Signed-off-by: Cong Liu <liucong2@kylinos.cn>	2022-11-09 22:24:24 +08:00
Cong Liu	60210331fb	New upstream version 7.1.0	2022-11-03 14:19:34 +08:00

Author

SHA1

Message

Date

Thomas Huth

46eeafe26b

hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller (CVE-2023-0330)

We cannot use the generic reentrancy guard in the LSI code, so
we have to manually prevent endless reentrancy here. The problematic
lsi_execute_script() function has already a way to detect whether
too many instructions have been executed - we just have to slightly
change the logic here that it also takes into account if the function
has been called too often in a reentrant way.

The code in fuzz-lsi53c895a-test.c has been taken from an earlier
patch by Mauro Matteo Cascella.

Resolves: https://gitlab.com/qemu-project/qemu/-/issues/1563
Message-Id: <20230522091011.1082574-1-thuth@redhat.com>
Reviewed-by: Stefan Hajnoczi <stefanha@redhat.com>
Reviewed-by: Alexander Bulekov <alxndr@bu.edu>
Signed-off-by: Thomas Huth <thuth@redhat.com>
Signed-off-by: zeng_chi <zengchi@kylinos.cn>

2023-09-25 14:25:01 +08:00

Christian Ehrhardt

f91bd02a0c

roms as dependencies won't be available in packaged qemu

Forwarded: no
Last-Update: 2022-01-05

Due to the removal of blobs the packaging will not have the roms
dependency set and would fail at configure stage with:
  ../../tests/qtest/meson.build:272:2: ERROR: Unknown variable "roms".
Switch it back to the former empty intializer.

Gbp-Pq: Name ignore-roms-dependency-in-qtest.patch
Signed-off-by: Cong Liu <liucong2@kylinos.cn>

2022-11-09 22:24:24 +08:00

Cong Liu

60210331fb

New upstream version 7.1.0

2022-11-03 14:19:34 +08:00

3 Commits