qemu: fix CVE-2023-42467 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Yogita Urade <yogita.urade@windriver.com>	2023-10-04 11:19:31 +0000
committer	Steve Sakoman <steve@sakoman.com>	2023-10-11 03:54:46 -1000
commit	30969f3e975b7a906f7e6eed1c4fa839072bc9aa (patch)
tree	21e29b90352ffb8756edfa3330e200a8b6d95347 /scripts/lib/buildstats.py
parent	ae2c4f104b4c5ed5d6e7fc138e34b75c44eb9d96 (diff)
download	poky-30969f3e975b7a906f7e6eed1c4fa839072bc9aa.tar.gz

qemu: fix CVE-2023-42467

QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately. References: https://nvd.nist.gov/vuln/detail/CVE-2023-42467 https://gitlab.com/qemu-project/qemu/-/issues/1813 (From OE-Core rev: 4925ac7120605d551e1b28196b4a4dab7bc72b66) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/buildstats.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: