Re: [PATCH v2 1/1] security-process: update process information

s. > > Signed-off-by: Prasad J Pandit > --- > contribute/security-process.md | 154 - > 1 file changed, 95 insertions(+), 59 deletions(-) Reviewed-by: Petr Matousek Thanks! -- Petr Matousek / Red Hat Product Security PGP: 0xC44977CA 8107 AF16

[Qemu-devel] [PATCH] i8254: fix out-of-bounds memory access in pit_ioport_read()

and register. This is CVE-2015-3214. Signed-off-by: Petr Matousek Reported-by: Matt Tait --- hw/timer/i8254.c | 6 ++ 1 file changed, 6 insertions(+) diff --git a/hw/timer/i8254.c b/hw/timer/i8254.c index 3450c98..9b65a33 100644 --- a/hw/timer/i8254.c +++ b/hw/timer/i8254.c @@ -196,6 +196

[Qemu-devel] [PATCH] vnc: sanitize bits_per_pixel from the client

protocol specification allows. This is CVE-2014-7815. Signed-off-by: Petr Matousek --- ui/vnc.c | 11 +++ 1 file changed, 11 insertions(+) diff --git a/ui/vnc.c b/ui/vnc.c index 0fe6eff..6c8fb1a 100644 --- a/ui/vnc.c +++ b/ui/vnc.c @@ -2026,6 +2026,17 @@ static void set_pixel_format

[Qemu-devel] [PATCH v2] slirp: udp: fix NULL pointer dereference because of uninitialized socket

ecking that the socket is not just a socket stub. This is CVE-2014-3640. Signed-off-by: Petr Matousek Reported-by: Xavier Mehrenberger Reported-by: Stephane Duverger --- v1 -> v2 * change the check so that it's consistent with the rest of the code slirp/udp.c | 2 +- 1 file changed, 1 i

[Qemu-devel] [PATCH] slirp: udp: fix NULL pointer dereference because of uninitialized socket

ecking that the socket is in initialized state. This is CVE-2014-3640. Signed-off-by: Petr Matousek Reported-by: Xavier Mehrenberger Reported-by: Stephane Duverger Reviewed-by: Michael S. Tsirkin --- slirp/udp.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/slirp/udp.c b

Re: [Qemu-devel] [PATCH V2] virtio: properly validate address before accessing config

is zero since vdev->config is NULL > > Fix this by: > > - Validate the address in virtio_pci_config_{read|write}() before > .{set|get}_config > - Use addition instead minus to do the validation > > Cc: Michael S. Tsirkin > Cc: Petr Matousek > Signed-off-by: Ja

Re: [Qemu-devel] [PATCH 1/3] virtio-pci: properly validate address before accessing config

On Sat, Apr 27, 2013 at 01:13:16PM +0800, Jason Wang wrote: > On 04/26/2013 10:27 PM, Petr Matousek wrote: > > On Fri, Apr 26, 2013 at 04:34:02PM +0800, Jason Wang wrote: > >> There are several several issues in the current checking: > >> > >> - The check was b

Re: [Qemu-devel] [PATCH 1/3] virtio-pci: properly validate address before accessing config

> zero since vdev->config is NULL > > Fix this by: > > - Validate the address in virtio_pci_config_{read|write}() before > .{set|get}_config > - Use addition instead minus to do the validation > > Cc: Michael S. Tsirkin > Cc: Petr Matousek > Signed-