在 2021/7/29 下午8:48, Philippe Mathieu-Daudé 写道:
"hw/net/can: sja1000 fix buff2frame* when dlc is out of std CAN 8 bytes"
On 7/29/21 2:33 PM, Pavel Pisa wrote:
Problem reported by openEuler fuzz-sig group.
The buff2frame_bas function (hw\net\can\can_sja1000.c)
infoleak(qemu5.x~qemu6.x) or
"hw/net/can: sja1000 fix buff2frame* when dlc is out of std CAN 8 bytes"
On 7/29/21 2:33 PM, Pavel Pisa wrote:
> Problem reported by openEuler fuzz-sig group.
>
> The buff2frame_bas function (hw\net\can\can_sja1000.c)
> infoleak(qemu5.x~qemu6.x) or stack-overflow(qemu 4.x).
Cc: