summaryrefslogtreecommitdiffstats
path: root/meta/recipes-devtools/qemu/qemu.inc
diff options
context:
space:
mode:
authorYogita Urade <yogita.urade@windriver.com>2023-10-05 11:12:52 +0000
committerRichard Purdie <richard.purdie@linuxfoundation.org>2023-10-06 11:51:11 +0100
commitba7ac22f2ed783fd4b304c4e3ca0d1203475a81f (patch)
tree8f09385fe2e669929a785ee6095ec28603224759 /meta/recipes-devtools/qemu/qemu.inc
parent3ddddfc14f805fe7572bba129605869fb848fed4 (diff)
downloadpoky-ba7ac22f2ed783fd4b304c4e3ca0d1203475a81f.tar.gz
qemu: fix CVE-2023-42467
QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately. References: https://nvd.nist.gov/vuln/detail/CVE-2023-42467 https://gitlab.com/qemu-project/qemu/-/issues/1813 (From OE-Core rev: 7c42b976d7a72acf917bae9d055768a1350e507d) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/qemu/qemu.inc')
-rw-r--r--meta/recipes-devtools/qemu/qemu.inc1
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index 9664b747b3..b331f87c0d 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -35,6 +35,7 @@ SRC_URI = "https://download.qemu.org/${BPN}-${PV}.tar.xz \
35 file://fixmips.patch \ 35 file://fixmips.patch \
36 file://qemu-guest-agent.init \ 36 file://qemu-guest-agent.init \
37 file://qemu-guest-agent.udev \ 37 file://qemu-guest-agent.udev \
38 file://CVE-2023-42467.patch \
38 " 39 "
39UPSTREAM_CHECK_REGEX = "qemu-(?P<pver>\d+(\.\d+)+)\.tar" 40UPSTREAM_CHECK_REGEX = "qemu-(?P<pver>\d+(\.\d+)+)\.tar"
40 41
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-05-13 00:06:09 +0000