Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP4:Update
xen.15652
CVE-2019-14378-qemut-heap-buffer-overflow-durin...
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2019-14378-qemut-heap-buffer-overflow-during-packet-reassembly-in-slirp.patch of Package xen.15652
References: bsc#1143797, CVE-2019-14378 Index: xen-4.11.2-testing/tools/qemu-xen-traditional-dir-remote/slirp/ip_input.c =================================================================== --- xen-4.11.2-testing.orig/tools/qemu-xen-traditional-dir-remote/slirp/ip_input.c +++ xen-4.11.2-testing/tools/qemu-xen-traditional-dir-remote/slirp/ip_input.c @@ -369,6 +369,8 @@ insert: q = fp->frag_link.next; m = dtom(q); + int was_ext = m->m_flags & M_EXT; + q = (struct ipasfrag *) q->ipf_next; while (q != (struct ipasfrag*)&fp->frag_link) { struct mbuf *t = dtom(q); @@ -391,7 +393,7 @@ insert: * the old buffer (in the mbuf), so we must point ip * into the new buffer. */ - if (m->m_flags & M_EXT) { + if (!was_ext && m->m_flags & M_EXT) { int delta = (char *)q - m->m_dat; q = (struct ipasfrag *)(m->m_ext + delta); }
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor