subject:"\[PATCH\] hw\/nvme\: fix oob memory read in fdp events log"

Re: [PATCH] hw/nvme: fix oob memory read in fdp events log

2023-08-08 Thread Klaus Jensen

+CC qemu-stable On Aug 3 20:44, Klaus Jensen wrote: > From: Klaus Jensen > > As reported by Trend Micro's Zero Day Initiative, an oob memory read > vulnerability exists in nvme_fdp_events(). The host-provided offset is > not verified. > > Fix this. > > This is only exploitable when Flexible

[PATCH] hw/nvme: fix oob memory read in fdp events log

2023-08-03 Thread Klaus Jensen

From: Klaus Jensen As reported by Trend Micro's Zero Day Initiative, an oob memory read vulnerability exists in nvme_fdp_events(). The host-provided offset is not verified. Fix this. This is only exploitable when Flexible Data Placement mode (fdp=on) is enabled. Fixes: CVE-2023-4135 Fixes: