On 1/9/24 15:01, Volker Rümelin wrote:
Currently, the guest may write to the device configuration space,
whereas the virtio sound device specification in chapter 5.14.4
clearly states that the fields in the device configuration space
are driver-read-only.

Remove the set_config function from the virtio_snd class.

This also prevents a heap buffer overflow. See QEMU issue #2296.

Resolves: https://gitlab.com/qemu-project/qemu/-/issues/2296
Signed-off-by: Volker Rümelin <vr_q...@t-online.de>
---
  hw/audio/trace-events |  1 -
  hw/audio/virtio-snd.c | 24 ------------------------
  2 files changed, 25 deletions(-)

Patch queued, thanks.

Reply via email to