mirrors/qemu
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
3f481e3305
qemu/hw/pci
History
Akihiko Odaki 309051ac40 pcie_sriov: Validate NumVFs 
The guest may write NumVFs greater than TotalVFs and that can lead
to buffer overflow in VF implementations.

Cc: qemu-stable@nongnu.org
Fixes: CVE-2024-26327
Fixes: 7c0fa8dff8 ("pcie: Add support for Single Root I/O Virtualization (SR/IOV)")
Signed-off-by: Akihiko Odaki <akihiko.odaki@daynix.com>
Message-Id: <20240228-reuse-v8-2-282660281e60@daynix.com>
Reviewed-by: Michael S. Tsirkin <mst@redhat.com>
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
Reviewed-by: Sriram Yagnaraman <sriram.yagnaraman@ericsson.com>
(cherry picked from commit 6081b4243c)
Signed-off-by: Michael Tokarev <mjt@tls.msk.ru>
2024-03-14 21:24:34 +03:00
..
Kconfig
meson.build hw/pci: PCIe Data Object Exchange emulation 2022-11-07 13:12:19 -05:00
msi.c msi: fix MSI vector limit check in msi_set_mask() 2022-06-27 18:53:18 -04:00
msix.c msix: unset PCIDevice::msix_vector_poll_notifier in rollback 2023-12-20 19:11:10 +03:00
pci_bridge.c pci: fix PCI resource reserve capability on BE 2021-10-20 06:18:17 -04:00
pci_host.c pci: do not respond config requests after PCI device eject 2023-08-04 07:37:06 +03:00
pci-stub.c
pci.c vfio-user: handle device interrupts 2022-06-15 16:43:42 +01:00
pcie_aer.c Trivial: 3 char repeat typos 2022-06-28 11:06:02 +02:00
pcie_doe.c hw/pci: PCIe Data Object Exchange emulation 2022-11-07 13:12:19 -05:00
pcie_host.c Do not include exec/address-spaces.h if it's not really necessary 2021-05-02 17:24:51 +02:00
pcie_port.c pci/pcie_port: Add pci_find_port_by_pn() 2022-05-13 07:57:26 -04:00
pcie_sriov.c pcie_sriov: Validate NumVFs 2024-03-14 21:24:34 +03:00
pcie.c pcie: Don't try triggering a LSI when not defined 2022-04-20 18:00:30 -03:00
shpc.c Trivial: 3 char repeat typos 2022-06-28 11:06:02 +02:00
slotid_cap.c
trace-events pcie: Add support for Single Root I/O Virtualization (SR/IOV) 2022-03-06 05:08:23 -05:00
trace.h