|
From: | Stefan Priebe - Profihost AG |
Subject: | Re: [Qemu-devel] [Qemu-stable] [PULL 0/3] Cve 2015 5154 patches |
Date: | Mon, 27 Jul 2015 14:10:40 +0200 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.8.0 |
Am 27.07.2015 um 14:01 schrieb John Snow: > The following changes since commit f793d97e454a56d17e404004867985622ca1a63b: > > Merge remote-tracking branch 'remotes/bonzini/tags/for-upstream' into > staging (2015-07-24 13:07:10 +0100) > > are available in the git repository at: > > https://github.com/jnsnow/qemu.git tags/cve-2015-5154-pull-request Any details on this CVE? Is RCE possible? Only if IDE is used? Stefan > for you to fetch changes up to cb72cba83021fa42719e73a5249c12096a4d1cfc: > > ide: Clear DRQ after handling all expected accesses (2015-07-26 23:42:53 > -0400) > > ---------------------------------------------------------------- > > ---------------------------------------------------------------- > > Kevin Wolf (3): > ide: Check array bounds before writing to io_buffer (CVE-2015-5154) > ide/atapi: Fix START STOP UNIT command completion > ide: Clear DRQ after handling all expected accesses > > hw/ide/atapi.c | 1 + > hw/ide/core.c | 32 ++++++++++++++++++++++++++++---- > 2 files changed, 29 insertions(+), 4 deletions(-) >
[Prev in Thread] | Current Thread | [Next in Thread] |