mirrors/qemu
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
qemu/hw
History
Mark Cave-Ayland 0db895361b esp: always check current_req is not NULL before use in DMA callbacks 
After issuing a SCSI command the SCSI layer can call the SCSIBusInfo .cancel
callback which resets both current_req and current_dev to NULL. If any data
is left in the transfer buffer (async_len != 0) then the next TI (Transfer
Information) command will attempt to reference the NULL pointer causing a
segfault.

Buglink: https://bugs.launchpad.net/qemu/+bug/1910723
Buglink: https://bugs.launchpad.net/qemu/+bug/1909247
Signed-off-by: Mark Cave-Ayland <mark.cave-ayland@ilande.co.uk>
Tested-by: Alexander Bulekov <alxndr@bu.edu>
Message-Id: <20210407195801.685-2-mark.cave-ayland@ilande.co.uk>
2021-04-12 22:33:33 +01:00
..
9pfs
acpi
acpi/piix4: reinitialize acpi PM device on reset
2021-04-01 12:19:52 -04:00
adc
alpha
arm
hw/arm/smmuv3: Emulate CFGI_STE_RANGE for an aligned range of StreamIDs
2021-04-12 11:06:24 +01:00
audio
hw: Replace anti-social QOM type names
2021-03-19 15:18:43 +01:00
avr
block
hw/block/nvme: drain namespaces on sq deletion
2021-04-12 08:55:23 +02:00
char
s390x: css: report errors from ccw_dstream_read/write
2021-04-09 10:52:13 +02:00
core
target-arm queue:
2021-04-06 16:04:33 +01:00
cpu
cpu/core: Fix "help" of CPU core device types
2021-04-09 16:05:16 -04:00
cris
hw: Replace anti-social QOM type names
2021-03-19 15:18:43 +01:00
display
hw/display/xlnx_dp: Free FIFOs adding xlnx_dp_finalize()
2021-03-30 14:05:33 +01:00
dma
gpio
hppa
hyperv
i2c
i386
acpi: Move setters/getters of oem fields to X86MachineState
2021-03-22 18:58:19 -04:00
ide
hw/ide: remove 'ide-drive' device
2021-03-18 09:22:55 +00:00
input
intc
* fixes for i386 TCG paging
2021-03-19 18:01:17 +00:00
ipack
ipmi
isa
isa/v582c686: Reinitialize ACPI PM device on reset
2021-04-01 12:19:52 -04:00
lm32
m68k
mem
microblaze
hw: Replace anti-social QOM type names
2021-03-19 15:18:43 +01:00
mips
misc
hw: Replace anti-social QOM type names
2021-03-19 15:18:43 +01:00
moxie
net
Revert "net: Move NetClientState.info_str to dynamic allocations"
2021-04-08 17:33:59 +08:00
nios2
nubus
nvram
openrisc
pci
virtio-pci: compat page aligned ATS
2021-04-06 07:11:36 -04:00
pci-bridge
pci-host
pcmcia
ppc
hw/ppc/e500plat: Only try to add valid dynamic sysbus devices to platform bus
2021-04-06 11:49:14 +01:00
rdma
remote
riscv
hw/riscv: microchip_pfsoc: Map EMMC/SD mux register
2021-03-22 21:54:40 -04:00
rtc
rx
s390x
s390x: css: report errors from ccw_dstream_read/write
2021-04-09 10:52:13 +02:00
scsi
esp: always check current_req is not NULL before use in DMA callbacks
2021-04-12 22:33:33 +01:00
sd
hw/sd: sdhci: Reset the data pointer of s->fifo_buffer[] when a different block size is programmed
2021-03-22 16:56:22 +01:00
sh4
smbios
sparc
hw: Replace anti-social QOM type names
2021-03-19 15:18:43 +01:00
sparc64
hw/ide: remove 'ide-drive' device
2021-03-18 09:22:55 +00:00
ssi
timer
hw/timer/renesas_tmr: Add default-case asserts in read_tcnt()
2021-03-30 14:05:34 +01:00
tpm
tricore
unicore32
usb
hw/usb/hcd-ehci: Fix crash when showing help of EHCI devices
2021-03-26 11:10:49 +01:00
vfio
virtio
migration: Inhibit virtio-balloon for the duration of background snapshot
2021-04-06 18:56:01 +01:00
watchdog
xen
xenpv
xtensa
Kconfig
meson.build