[libvirt] [PATCH] uml: sanity check external data before using it
Eric Blake
eblake at redhat.com
Wed Mar 3 16:38:14 UTC 2010
According to Eric Blake on 3/3/2010 9:34 AM:
> Otherwise, a malicious packet could cause a DoS via spurious
> out-of-memory failure.
>
> + if (sizeof res < res.length) {
Phooey; posted the wrong version. That should be sizeof res.data, not
sizeof res, given the later use of:
memcpy(retdata + retlen, res.data, res.length);
--
Eric Blake eblake at redhat.com +1-801-349-2682
Libvirt virtualization library http://libvirt.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 320 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20100303/9aa45391/attachment-0001.sig>
More information about the libvir-list
mailing list