Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP2:Update
qemu.10254
0136-dma-rc4030-limit-interval-timer-rel.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File 0136-dma-rc4030-limit-interval-timer-rel.patch of Package qemu.10254
From 40ba3df70c699b95739ac5cdb1db9a444bc226df Mon Sep 17 00:00:00 2001 From: P J P <ppandit@redhat.com> Date: Mon, 31 Oct 2016 15:55:14 -0600 Subject: [PATCH] dma: rc4030: limit interval timer reload value The JAZZ RC4030 chipset emulator has a periodic timer and associated interval reload register. The reload value is used as divider when computing timer's next tick value. If reload value is large, it could lead to divide by zero error. Limit the interval reload value to avoid it. Reported-by: Huawei PSIRT <psirt@huawei.com> Signed-off-by: Prasad J Pandit <pjp@fedoraproject.org> [BR: CVE-2016-8667 BSC#1004702] Signed-off-by: Bruce Rogers <brogers@suse.com> --- hw/dma/rc4030.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hw/dma/rc4030.c b/hw/dma/rc4030.c index af2663256e..fb475dbe48 100644 --- a/hw/dma/rc4030.c +++ b/hw/dma/rc4030.c @@ -377,7 +377,7 @@ static void rc4030_writel(void *opaque, hwaddr addr, uint32_t val) break; /* Interval timer reload */ case 0x0228: - s->itr = val; + s->itr = val & 0x01FF; qemu_irq_lower(s->timer_irq); set_next_tick(s); break;
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor