[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH v2 0/8] vhost-user-gpu: fix several security issues
From: |
Gerd Hoffmann |
Subject: |
Re: [PATCH v2 0/8] vhost-user-gpu: fix several security issues |
Date: |
Tue, 18 May 2021 12:31:14 +0200 |
On Sat, May 15, 2021 at 08:03:55PM -0700, Li Qiang wrote:
> These security issue is low severity and is similar with the
> virtio-vga/virtio-gpu device. All of them can be triggered by
> the guest user.
>
> Change since v1:
> Add the CVE information:
> Several memory leak issues is combined assigned CVE-2021-3544.
> Information disclosure is assigned CVE-2021-3545.
> OOB memory write access is assigned CVE-2021-3545.
>
> Abstract 'vg_cleanup_mapping_iov' to make code more clearly.
Added all ti vga queue.
thanks,
Gerd
- [PATCH v2 0/8] vhost-user-gpu: fix several security issues, Li Qiang, 2021/05/15
- [PATCH v2 3/8] vhost-user-gpu: fix memory leak in vg_resource_attach_backing (CVE-2021-3544), Li Qiang, 2021/05/15
- [PATCH v2 8/8] vhost-user-gpu: abstract vg_cleanup_mapping_iov, Li Qiang, 2021/05/15
- [PATCH v2 6/8] vhost-user-gpu: fix memory leak in 'virgl_resource_attach_backing' (CVE-2021-3544), Li Qiang, 2021/05/15
- [PATCH v2 4/8] vhost-user-gpu: fix memory leak while calling 'vg_resource_unref' (CVE-2021-3544), Li Qiang, 2021/05/15
- [PATCH v2 1/8] vhost-user-gpu: fix memory disclosure in virgl_cmd_get_capset_info (CVE-2021-3545), Li Qiang, 2021/05/15
- [PATCH v2 5/8] vhost-user-gpu: fix memory leak in 'virgl_cmd_resource_unref' (CVE-2021-3544), Li Qiang, 2021/05/15
- [PATCH v2 2/8] vhost-user-gpu: fix resource leak in 'vg_resource_create_2d' (CVE-2021-3544), Li Qiang, 2021/05/15
- [PATCH v2 7/8] vhost-user-gpu: fix OOB write in 'virgl_cmd_get_capset' (CVE-2021-3546), Li Qiang, 2021/05/15
- Re: [PATCH v2 0/8] vhost-user-gpu: fix several security issues, Marc-André Lureau, 2021/05/16
- Re: [PATCH v2 0/8] vhost-user-gpu: fix several security issues,
Gerd Hoffmann <=