[Qemu-devel] [PULL for-2.4 0/7] Rtl8139 cplus tx input validation patches

Stefan Hajnoczi Mon, 03 Aug 2015 05:10:08 -0700

The following changes since commit cb48f67ad8c7b33c617d4f8144a27706e69fd688:


  bsd-user: Fix operand to cpu_x86_exec (2015-07-30 12:38:49 +0100)

are available in the git repository at:

  git://github.com/stefanha/qemu.git 
tags/rtl8139-cplus-tx-input-validation-pull-request

for you to fetch changes up to 8357946b15f0a31f73dd691b7da95f29318ed310:

  rtl8139: check TCP Data Offset field (CVE-2015-5165) (2015-08-03 13:08:10 
+0100)

----------------------------------------------------------------
Pull request

----------------------------------------------------------------

Stefan Hajnoczi (7):
  rtl8139: avoid nested ifs in IP header parsing (CVE-2015-5165)
  rtl8139: drop tautologous if (ip) {...} statement (CVE-2015-5165)
  rtl8139: skip offload on short Ethernet/IP header (CVE-2015-5165)
  rtl8139: check IP Header Length field (CVE-2015-5165)
  rtl8139: check IP Total Length field (CVE-2015-5165)
  rtl8139: skip offload on short TCP header (CVE-2015-5165)
  rtl8139: check TCP Data Offset field (CVE-2015-5165)

 hw/net/rtl8139.c | 367 +++++++++++++++++++++++++++++--------------------------
 1 file changed, 192 insertions(+), 175 deletions(-)

-- 
2.4.3

[Qemu-devel] [PULL for-2.4 0/7] Rtl8139 cplus tx input validation patches

Reply via email to