CVS: cvs.openbsd.org: ports

Stuart Henderson Thu, 02 Feb 2012 14:08:17 -0800

CVSROOT:        /cvs
Module name:    ports
Changes by:     st...@cvs.openbsd.org   2012/02/02 15:07:33


Modified files:
        emulators/qemu : Makefile 
Added files:
        emulators/qemu/patches: patch-hw_e1000_c 

Log message:
Add a fix for CVE-2012-0029 from QEMU upstream, ok Brad, ajacoutot

"Heap-based buffer overflow in the process_tx_desc function in the
e1000 emulation (hw/e1000.c) [...] allows guest OS users to cause
a denial of service (QEMU crash) and possibly execute arbitrary
code via crafted legacy mode packets."

CVS: cvs.openbsd.org: ports

Reply via email to