hw/scsi/scsi-disk: Avoid buffer overrun parsing loadparam (CID 1565746)

[PATCH 0/2] hw/scsi/scsi-disk: Avoid buffer overrun parsing loadparam (CID 1565746)

Philippe Mathieu-Daudé posted 2 patches 3 days, 3 hours ago

Download series mbox

hw/s390x/ccw-device.h               |  5 +++--
hw/s390x/ipl.h                      |  2 +-
include/hw/qdev-properties-system.h |  2 +-
include/hw/s390x/s390-virtio-ccw.h  |  3 ++-
hw/core/qdev-properties-system.c    |  8 +++++---
hw/s390x/ipl.c                      |  6 +++---
hw/scsi/scsi-disk.c                 | 12 +++---------
7 files changed, 18 insertions(+), 20 deletions(-)

Expand all Fold all

[PATCH 0/2] hw/scsi/scsi-disk: Avoid buffer overrun parsing loadparam (CID 1565746)

Posted by Philippe Mathieu-Daudé 3 days, 3 hours ago

Replace magic 8 by proper LOADPARM_LEN definition,
use array of char, allocate loadparam[] within qdev
state, fixing Coverity overrun report (CID 1565746).

Philippe Mathieu-Daudé (2):
  hw/s390x: Declare loadparm as char[LOADPARM_LEN]
  hw/scsi/scsi-disk: Avoid buffer overrun parsing 'loadparam'

 hw/s390x/ccw-device.h               |  5 +++--
 hw/s390x/ipl.h                      |  2 +-
 include/hw/qdev-properties-system.h |  2 +-
 include/hw/s390x/s390-virtio-ccw.h  |  3 ++-
 hw/core/qdev-properties-system.c    |  8 +++++---
 hw/s390x/ipl.c                      |  6 +++---
 hw/scsi/scsi-disk.c                 | 12 +++---------
 7 files changed, 18 insertions(+), 20 deletions(-)

-- 
2.45.2