Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP3:GA
qemu-testsuite.19028
0086-dma-rc4030-limit-interval-timer-rel.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File 0086-dma-rc4030-limit-interval-timer-rel.patch of Package qemu-testsuite.19028
From: P J P <ppandit@redhat.com> Date: Mon, 31 Oct 2016 15:55:14 -0600 Subject: dma: rc4030: limit interval timer reload value The JAZZ RC4030 chipset emulator has a periodic timer and associated interval reload register. The reload value is used as divider when computing timer's next tick value. If reload value is large, it could lead to divide by zero error. Limit the interval reload value to avoid it. Reported-by: Huawei PSIRT <psirt@huawei.com> Signed-off-by: Prasad J Pandit <pjp@fedoraproject.org> [BR: CVE-2016-8667 BSC#1004702] Signed-off-by: Bruce Rogers <brogers@suse.com> --- hw/dma/rc4030.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hw/dma/rc4030.c b/hw/dma/rc4030.c index a06c2359a770eb1780a1f24571ad..1814ca6b055a672cebaee2bb1983 100644 --- a/hw/dma/rc4030.c +++ b/hw/dma/rc4030.c @@ -459,7 +459,7 @@ static void rc4030_write(void *opaque, hwaddr addr, uint64_t data, break; /* Interval timer reload */ case 0x0228: - s->itr = val; + s->itr = val & 0x01FF; qemu_irq_lower(s->timer_irq); set_next_tick(s); break;
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor