On 6 May 2014 12:53, Dr. David Alan Gilbert wrote:
> * Peter Maydell (peter.mayd...@linaro.org) wrote:
>> +{
>> +stellaris_enet_state *s = opaque;
>> +int i;
>> +
>> +/* Sanitize inbound state. Note that next_packet is an index but
>> + * np is a size; hence their valid upper bound
* Peter Maydell (peter.mayd...@linaro.org) wrote:
> Convert this device to use vmstate for its save/load, including
> providing a post_load function that sanitizes inbound data to
> avoid possible buffer overflows if it is malicious.
>
> The sanitizing fixes CVE-2013-4532 (though nobody should be
Convert this device to use vmstate for its save/load, including
providing a post_load function that sanitizes inbound data to
avoid possible buffer overflows if it is malicious.
The sanitizing fixes CVE-2013-4532 (though nobody should be
relying on the security properties of most of the unmaintain
