Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet()

From:	P J P
Subject:	Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet()
Date:	Fri, 26 Feb 2021 18:14:31 +0000 (UTC)

Hello Alex,

On Thursday, 25 February, 2021, 10:00:33 pm IST, Alexander Bulekov 
<alxndr@bu.edu> wrote: 
On 210225 1128, Alexander Bulekov wrote:
> On 210225 1931, P J P wrote:
> > +-- On Wed, 24 Feb 2021, Philippe Mathieu-Daudé wrote --+
> > | On 2/24/21 2:17 PM, Jason Wang wrote:
> > | > On 2021/2/24 6:11 下午, Philippe Mathieu-Daudé wrote:
> > | >> IIUC the guest could trigger an infinite loop and brick the emulated 
> > | >> device model. Likely exhausting the stack, so either SEGV by 
> > corruption 
> > | >> or some ENOMEM?
> > | > 
> > | > Yes.
> > | >>
> > | >> Since this is guest triggerable, shouldn't we contact qemu-security@ 
> > list 
> > | >> and ask for a CVE for this issue, so distributions can track the 
> > patches 
> > | >> to backport in their stable releases? (it seems to be within the KVM 
> > | >> devices boundary).
> > | > 
> > | > 
> > | > That's the plan. I discussed this with Prasad before and he promise to
> > | > ask CVE for this.
> > 
> > 'CVE-2021-3416' is assigned to this issue by Red Hat Inc.
>
> What is the difference with CVE-2021-20255 and CVE-2021-20257 ? Aren't
> those just manifestations of this bug for the e1000 and the eepro100
> devices

* You mean manifestations of the dam re-entrancy issue? 

* They have separate CVEs because they are fixed individually.


Thank you.
---
  -P J P
http://feedmug.com

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/6] Detect reentrant RX casue by loopback, Jason Wang, 2021/02/24
- [PATCH 1/6] net: introduce qemu_receive_packet(), Jason Wang, 2021/02/24
  - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Philippe Mathieu-Daudé, 2021/02/24
    - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Jason Wang, 2021/02/24
    - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Philippe Mathieu-Daudé, 2021/02/24
    - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), P J P, 2021/02/25
    - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Alexander Bulekov, 2021/02/25
    - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Alexander Bulekov, 2021/02/25
    - Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet(), P J P <=
    - Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet(), Alexander Bulekov, 2021/02/26
  - Re: [PATCH 1/6] net: introduce qemu_receive_packet(), Philippe Mathieu-Daudé, 2021/02/25
- [PATCH 2/6] e1000: switch to use qemu_receive_packet() for loopback, Jason Wang, 2021/02/24
  - Re: [PATCH 2/6] e1000: switch to use qemu_receive_packet() for loopback, Philippe Mathieu-Daudé, 2021/02/25
- [PATCH 3/6] dp8393x: switch to use qemu_receive_packet() for loopback packet, Jason Wang, 2021/02/24
  - Re: [PATCH 3/6] dp8393x: switch to use qemu_receive_packet() for loopback packet, Stefan Weil, 2021/02/24
    - Re: [PATCH 3/6] dp8393x: switch to use qemu_receive_packet() for loopback packet, Philippe Mathieu-Daudé, 2021/02/25
    - Re: [PATCH 3/6] dp8393x: switch to use qemu_receive_packet() for loopback packet, Stefan Weil, 2021/02/25
    - Re: [PATCH 3/6] dp8393x: switch to use qemu_receive_packet() for loopback packet, Jason Wang, 2021/02/26
- [PATCH 4/6] msf2-mac: switch to use qemu_receive_packet() for loopback, Jason Wang, 2021/02/24

Prev by Date: Re: [PATCH v4 0/8] hw/sh4: Kconfig cleanups
Next by Date: Re: [PATCH v25 00/20] i386 cleanup PART 2
Previous by thread: Re: [PATCH 1/6] net: introduce qemu_receive_packet()
Next by thread: Re: [QEMU-SECURITY] [PATCH 1/6] net: introduce qemu_receive_packet()
Index(es):
- Date
- Thread