]> rtime.felk.cvut.cz Git - lisovros/qemu_apohw.git/commit
projects / lisovros / qemu_apohw.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fafc2e4) | patch
scsi-disk: fix buffer overflow
authorGerd Hoffmann <kraxel@redhat.com>
Wed, 10 Mar 2010 16:47:17 +0000 (17:47 +0100)
committerAurelien Jarno <aurelien@aurel32.net>
Fri, 9 Apr 2010 16:41:59 +0000 (18:41 +0200)
commit4f7cb969319be00ffce3dee6426d1b4ae95d2d83
treea6a626609085d6d5740dce849504c0771193659etree | snapshot
parentfafc2e4b33220afd52b9e4bab1091b5861c8e5c4commit | diff
scsi-disk: fix buffer overflow

In case s->version is shorter than 4 bytes we overflow the memcpy src
buffer.  Fix it by clearing the target buffer, then copy only the
amount of bytes we actually have.

Signed-off-by: Gerd Hoffmann <kraxel@redhat.com>
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
(cherry picked from 314b1811c15f4e982e4667d9b845aee4b5a63d91)

Signed-off-by: Kevin Wolf <kwolf@redhat.com>
hw/scsi-disk.c diff | blob | history
Virtual HW used in A0B36APO subject