subject:"\[PATCH\] hw\/net\/virtio\-net.c\: fix crash in iov_copy\(\)"

Re: [PATCH] hw/net/virtio-net.c: fix crash in iov_copy()

2024-06-11 Thread Alex Bennée

Дмитрий Фролов writes: > ping > > https://patchew.org/QEMU/20240527133140.218300-2-fro...@swemel.ru/ > > On 27.05.2024 16:31, Dmitry Frolov wrote: >> A crash found while fuzzing device virtio-net-socket-check-used. >> Assertion "offset == 0" in iov_copy() fails if less than guest_hdr_len bytes >>

Re: [PATCH] hw/net/virtio-net.c: fix crash in iov_copy()

2024-06-11 Thread Дмитрий Фролов

ping https://patchew.org/QEMU/20240527133140.218300-2-fro...@swemel.ru/ On 27.05.2024 16:31, Dmitry Frolov wrote: A crash found while fuzzing device virtio-net-socket-check-used. Assertion "offset == 0" in iov_copy() fails if less than guest_hdr_len bytes were transmited. Signed-off-by: Dmitry

[PATCH] hw/net/virtio-net.c: fix crash in iov_copy()

2024-05-27 Thread Dmitry Frolov

A crash found while fuzzing device virtio-net-socket-check-used. Assertion "offset == 0" in iov_copy() fails if less than guest_hdr_len bytes were transmited. Signed-off-by: Dmitry Frolov --- hw/net/virtio-net.c | 6 ++ 1 file changed, 6 insertions(+) diff --git a/hw/net/virtio-net.c b/hw/n