]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4288dda) | patch
MFC r341484
authorgordon <gordon@FreeBSD.org>
Tue, 4 Dec 2018 18:32:50 +0000 (18:32 +0000)
committergordon <gordon@FreeBSD.org>
Tue, 4 Dec 2018 18:32:50 +0000 (18:32 +0000)
commit5b0911ed9405a15d0fddd237377ecaf0684142a0
tree35f64d0d4779a9423fcd4110ba5c60718753ec70tree | snapshot
parent4288dda4c6b251c23e2c1d53c7ea2de588628dd0commit | diff
MFC r341484

Always treat firmware request and response sizes as unsigned.

This fixes an incomplete bounds check on the guest-supplied request
size where a very large request size could be interpreted as a negative
value and not be caught by the bounds check.

Submitted by: jhb
Reported by:  Reno Robert
Approved by:  so
Security:     FreeBSD-SA-18:14.bhyve
Security:     CVE-2018-17160
usr.sbin/bhyve/fwctl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.