[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH 1/6] net: introduce qemu_receive_packet()
From: |
Alexander Bulekov |
Subject: |
Re: [PATCH 1/6] net: introduce qemu_receive_packet() |
Date: |
Thu, 25 Feb 2021 11:28:05 -0500 |
On 210225 1931, P J P wrote:
> +-- On Wed, 24 Feb 2021, Philippe Mathieu-Daudé wrote --+
> | On 2/24/21 2:17 PM, Jason Wang wrote:
> | > On 2021/2/24 6:11 下午, Philippe Mathieu-Daudé wrote:
> | >> IIUC the guest could trigger an infinite loop and brick the emulated
> | >> device model. Likely exhausting the stack, so either SEGV by corruption
> | >> or some ENOMEM?
> | >
> | > Yes.
> | >>
> | >> Since this is guest triggerable, shouldn't we contact qemu-security@
> list
> | >> and ask for a CVE for this issue, so distributions can track the patches
> | >> to backport in their stable releases? (it seems to be within the KVM
> | >> devices boundary).
> | >
> | >
> | > That's the plan. I discussed this with Prasad before and he promise to
> | > ask CVE for this.
>
> 'CVE-2021-3416' is assigned to this issue by Red Hat Inc.
>
Hi Prasad,
What is the difference with CVE-2021-20255 and CVE-2021-20257 ? Aren't
those just manifestations of this bug for the e1000 and the eepro100
bug?
-Alex
> Thank you.
> --
> Prasad J Pandit / Red Hat Product Security Team
> 8685 545E B54C 486B C6EB 271E E285 8B5A F050 DE8D
- [PATCH 0/6] Detect reentrant RX casue by loopback, Jason Wang, 2021/02/24
- [PATCH 1/6] net: introduce qemu_receive_packet(), Jason Wang, 2021/02/24
- Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Philippe Mathieu-Daudé, 2021/02/24
- Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Jason Wang, 2021/02/24
- Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Philippe Mathieu-Daudé, 2021/02/24
- Re: [PATCH 1/6] net: introduce qemu_receive_packet(), P J P, 2021/02/25
- Re: [PATCH 1/6] net: introduce qemu_receive_packet(),
Alexander Bulekov <=
- Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Alexander Bulekov, 2021/02/25
- Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet(), P J P, 2021/02/26
- Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet(), Alexander Bulekov, 2021/02/26
Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Philippe Mathieu-Daudé, 2021/02/25
[PATCH 2/6] e1000: switch to use qemu_receive_packet() for loopback, Jason Wang, 2021/02/24
[PATCH 3/6] dp8393x: switch to use qemu_receive_packet() for loopback packet, Jason Wang, 2021/02/24