1. Patchew
  2. QEMU
  3. View series

[PATCH v2 0/2] Avoid QEMU OOM on huge request from guest

zhenwei pi posted 2 patches 1 month, 2 weeks ago
Patches applied successfully (tree, apply log)
git fetch https://github.com/patchew-project/qemu tags/patchew/20251221024321.143196-1-zhenwei.pi@linux.dev
Maintainers: "Gonglei (Arei)" <arei.gonglei@huawei.com>, zhenwei pi <zhenwei.pi@linux.dev>, "Michael S. Tsirkin" <mst@redhat.com>
backends/cryptodev-builtin.c | 9 +++------
hw/virtio/virtio-crypto.c    | 7 +++++++
2 files changed, 10 insertions(+), 6 deletions(-)
[PATCH v2 0/2] Avoid QEMU OOM on huge request from guest
Posted by zhenwei pi 1 month, 2 weeks ago 
From: zhenwei pi <pizhenwei@tensorfer.com>

v2:
- Fix possible overflow
- Append tag "Fixes: CVE-2025-14876" in commit message

v1:
Fix two issues in this series:
- Verify asym request size from device level
- Limit the maximum size for cryptodev builtin driver

zhenwei pi (2):
  hw/virtio/virtio-crypto: verify asym request size
  cryptodev-builtin: Limit the maximum size

 backends/cryptodev-builtin.c | 9 +++------
 hw/virtio/virtio-crypto.c    | 7 +++++++
 2 files changed, 10 insertions(+), 6 deletions(-)

-- 
2.43.0
Re: [PATCH v2 0/2] Avoid QEMU OOM on huge request from guest
Posted by Michael Tokarev 1 day, 5 hours ago 
On 12/21/25 05:43, zhenwei pi wrote:
> From: zhenwei pi <pizhenwei@tensorfer.com>
> 
> v2:
> - Fix possible overflow
> - Append tag "Fixes: CVE-2025-14876" in commit message
> 
> v1:
> Fix two issues in this series:
> - Verify asym request size from device level
> - Limit the maximum size for cryptodev builtin driver
> 
> zhenwei pi (2):
>    hw/virtio/virtio-crypto: verify asym request size
>    cryptodev-builtin: Limit the maximum size
> 
>   backends/cryptodev-builtin.c | 9 +++------
>   hw/virtio/virtio-crypto.c    | 7 +++++++
>   2 files changed, 10 insertions(+), 6 deletions(-)

I'm picking these two patches up for qemu stable releases.
Please let me know if I shouldn't.

Thanks,

/mjt

Patchew 2.1-devel-b67e4c2

© 2016 - 2026 Red Hat, Inc.