subject:"\[Qemu\-devel\] \[PATCH v2\] slirp\: check data length while emulating ident function"

Re: [Qemu-devel] [PATCH v2] slirp: check data length while emulating ident function

2019-01-13 Thread Samuel Thibault

P J P, le dim. 13 janv. 2019 23:29:48 +0530, a ecrit: > From: Prasad J Pandit > > While emulating identification protocol, tcp_emu() does not check > available space in the 'sc_rcv->sb_data' buffer. It could lead to > heap buffer overflow issue. Add check to avoid it. > > Reported-by: Kira <8647

[Qemu-devel] [PATCH v2] slirp: check data length while emulating ident function

2019-01-13 Thread P J P

From: Prasad J Pandit While emulating identification protocol, tcp_emu() does not check available space in the 'sc_rcv->sb_data' buffer. It could lead to heap buffer overflow issue. Add check to avoid it. Reported-by: Kira <864786...@qq.com> Signed-off-by: Prasad J Pandit --- slirp/tcp_subr.c