mirrors/qemu
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
b7afebcf9e
qemu/contrib
History
Li Qiang b7afebcf9e vhost-user-gpu: fix memory leak while calling 'vg_resource_unref' (CVE-2021-3544) 
If the guest trigger following sequences, the attach_backing will be leaked:

	vg_resource_create_2d
	vg_resource_attach_backing
	vg_resource_unref

This patch fix this by freeing 'res->iov' in vg_resource_destroy.

Fixes: CVE-2021-3544
Reported-by: Li Qiang <liq3ea@163.com>
virtio-gpu fix: 5e8e3c4c75 ("virtio-gpu: fix resource leak
in virgl_cmd_resource_unref")

Reviewed-by: Prasad J Pandit <pjp@fedoraproject.org>
Signed-off-by: Li Qiang <liq3ea@163.com>
Reviewed-by: Marc-André Lureau <marcandre.lureau@redhat.com>
Message-Id: <20210516030403.107723-5-liq3ea@163.com>
Signed-off-by: Gerd Hoffmann <kraxel@redhat.com>
2021-05-27 11:55:59 +02:00
..
elf2dmp elf2dmp: Rename PAGE_SIZE to ELF2DMP_PAGE_SIZE 2021-01-20 10:46:54 +01:00
gitdm contrib/gitdm: Add more individual contributors 2020-10-27 09:53:47 +00:00
ivshmem-client contrib: ivshmem client and server build fix for SunOS. 2021-03-20 06:33:17 +01:00
ivshmem-server contrib: ivshmem client and server build fix for SunOS. 2021-03-20 06:33:17 +01:00
plugins plugins: Expose physical addresses instead of device offsets 2021-03-17 07:17:46 +00:00
rdmacm-mux contrib/rdmacm-mux: Fix error condition in hash_tbl_search_fd_by_ifid() 2020-12-18 20:15:42 +02:00
systemd contrib: add systemd unit files 2017-12-20 22:29:26 +01:00
vhost-user-blk contrib/vhost-user-blk: avoid g_return_val_if() input validation 2020-12-09 13:04:17 -05:00
vhost-user-gpu vhost-user-gpu: fix memory leak while calling 'vg_resource_unref' (CVE-2021-3544) 2021-05-27 11:55:59 +02:00
vhost-user-input Fix build with 64 bits time_t 2021-05-14 10:26:18 -04:00
vhost-user-scsi libiscsi: convert to meson 2021-01-02 21:03:37 +01:00