From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:53289)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <stefanha@redhat.com>) id 1ZMEXw-0002Mv-Pu
	for qemu-devel@nongnu.org; Mon, 03 Aug 2015 08:08:49 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <stefanha@redhat.com>) id 1ZMEXs-00084P-Qh
	for qemu-devel@nongnu.org; Mon, 03 Aug 2015 08:08:48 -0400
From: Stefan Hajnoczi <stefanha@redhat.com>
Date: Mon,  3 Aug 2015 13:08:34 +0100
Message-Id: <1438603721-28320-1-git-send-email-stefanha@redhat.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Subject: [Qemu-devel] [PULL for-2.4 0/7] Rtl8139 cplus tx input validation
	patches
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org
Cc: Peter Maydell <peter.maydell@linaro.org>, Jason Wang <jasowang@redhat.com>, qemu-stable@nongnu.org, Stefan Hajnoczi <stefanha@redhat.com>

The following changes since commit cb48f67ad8c7b33c617d4f8144a27706e69fd6=
88:

  bsd-user: Fix operand to cpu_x86_exec (2015-07-30 12:38:49 +0100)

are available in the git repository at:

  git://github.com/stefanha/qemu.git tags/rtl8139-cplus-tx-input-validati=
on-pull-request

for you to fetch changes up to 8357946b15f0a31f73dd691b7da95f29318ed310:

  rtl8139: check TCP Data Offset field (CVE-2015-5165) (2015-08-03 13:08:=
10 +0100)

----------------------------------------------------------------
Pull request

----------------------------------------------------------------

Stefan Hajnoczi (7):
  rtl8139: avoid nested ifs in IP header parsing (CVE-2015-5165)
  rtl8139: drop tautologous if (ip) {...} statement (CVE-2015-5165)
  rtl8139: skip offload on short Ethernet/IP header (CVE-2015-5165)
  rtl8139: check IP Header Length field (CVE-2015-5165)
  rtl8139: check IP Total Length field (CVE-2015-5165)
  rtl8139: skip offload on short TCP header (CVE-2015-5165)
  rtl8139: check TCP Data Offset field (CVE-2015-5165)

 hw/net/rtl8139.c | 367 +++++++++++++++++++++++++++++--------------------=
------
 1 file changed, 192 insertions(+), 175 deletions(-)

--=20
2.4.3