Re: [libvirt] [PATCH] uml: sanity check external data before using it
According to Eric Blake on 3/3/2010 9:34 AM:
Otherwise, a malicious packet could cause a DoS via spurious
out-of-memory failure.
+ if (sizeof res < res.length) {
Phooey; posted the wrong version. That should be sizeof res.data, not
sizeof res, given the later use of:
memcpy(retdata + retlen, res.data, res.length);
--
Eric Blake eblake(a)redhat.com +1-801-349-2682
Libvirt virtualization library http://libvirt.org
Attachments:
- signature.asc (application/pgp-signature — 320 bytes)