vapier 14/08/28 07:36:55 Added: qemu-2.1.0-CVE-2014-5388.patch Removed: CVE-2014-5388.patch Log: Clean up CVE patch #520688 by Agostino Sarubbo. (Portage version: 2.2.10/cvs/Linux x86_64, signed Manifest commit with key D2E96200)
Revision Changes Path 1.1 app-emulation/qemu/files/qemu-2.1.0-CVE-2014-5388.patch file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-emulation/qemu/files/qemu-2.1.0-CVE-2014-5388.patch?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-emulation/qemu/files/qemu-2.1.0-CVE-2014-5388.patch?rev=1.1&content-type=text/plain Index: qemu-2.1.0-CVE-2014-5388.patch =================================================================== https://bugs.gentoo.org/520688 >From fa365d7cd11185237471823a5a33d36765454e16 Mon Sep 17 00:00:00 2001 From: Gonglei <[email protected]> Date: Wed, 20 Aug 2014 13:52:30 +0800 Subject: [PATCH] pcihp: fix possible array out of bounds Prevent out-of-bounds array access on acpi_pcihp_pci_status. Signed-off-by: Gonglei <[email protected]> Reviewed-by: Peter Crosthwaite <[email protected]> Reviewed-by: Michael S. Tsirkin <[email protected]> Signed-off-by: Michael S. Tsirkin <[email protected]> Cc: [email protected] Reviewed-by: Marcel Apfelbaum <[email protected]> --- hw/acpi/pcihp.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hw/acpi/pcihp.c b/hw/acpi/pcihp.c index fae663a..34dedf1 100644 --- a/hw/acpi/pcihp.c +++ b/hw/acpi/pcihp.c @@ -231,7 +231,7 @@ static uint64_t pci_read(void *opaque, hwaddr addr, unsigned int size) uint32_t val = 0; int bsel = s->hotplug_select; - if (bsel < 0 || bsel > ACPI_PCIHP_MAX_HOTPLUG_BUS) { + if (bsel < 0 || bsel >= ACPI_PCIHP_MAX_HOTPLUG_BUS) { return 0; } -- 2.0.0
