diff options
author | Marc-André Lureau | 2020-04-21 19:02:27 +0200 |
---|---|---|
committer | Peter Maydell | 2020-04-21 19:39:20 +0200 |
commit | 7769c23774d1278f60b9e40d2c0b98784de6425f (patch) | |
tree | 64250a7fd63d73a1f046f2462b73f667d3a6fc0c | |
parent | target/ppc: Fix TCG temporary leaks in gen_slbia() (diff) | |
download | qemu-7769c23774d1278f60b9e40d2c0b98784de6425f.tar.gz qemu-7769c23774d1278f60b9e40d2c0b98784de6425f.tar.xz qemu-7769c23774d1278f60b9e40d2c0b98784de6425f.zip |
slirp: update to fix CVE-2020-1983
This is an update on the stable-4.2 branch of libslirp.git:
git shortlog 55ab21c9a3..2faae0f778f81
Marc-André Lureau (1):
Fix use-afte-free in ip_reass() (CVE-2020-1983)
CVE-2020-1983 is actually a follow up fix for commit
126c04acbabd7ad32c2b018fe10dfac2a3bc1210 ("Fix heap overflow in
ip_reass on big packet input") which was was included in qemu
v4.1 (commit e1a4a24d262ba5ac74ea1795adb3ab1cd574c7fb "slirp: update
with CVE-2019-14378 fix").
Signed-off-by: Marc-André Lureau <marcandre.lureau@redhat.com>
Message-id: 20200421170227.843555-1-marcandre.lureau@redhat.com
Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
m--------- | slirp | 0 |
1 files changed, 0 insertions, 0 deletions
diff --git a/slirp b/slirp -Subproject 55ab21c9a36852915b81f1b41ebaf3b6509dd8b +Subproject 2faae0f778f818fadc873308f983289df697eb9 |