From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:33055) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aYFW3-00010a-K7 for qemu-devel@nongnu.org; Tue, 23 Feb 2016 11:08:48 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aYFVz-0003m9-Bs for qemu-devel@nongnu.org; Tue, 23 Feb 2016 11:08:47 -0500 Received: from mx1.redhat.com ([209.132.183.28]:52545) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aYFVz-0003lq-72 for qemu-devel@nongnu.org; Tue, 23 Feb 2016 11:08:43 -0500 From: P J P Date: Tue, 23 Feb 2016 21:38:25 +0530 Message-Id: <1456243707-29345-1-git-send-email-ppandit@redhat.com> Subject: [Qemu-devel] [PATCH v2 0/2] net: check payload length and minor updates List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Qemu Developers Cc: Jason Wang , Prasad J Pandit , Markus Armbruster , Liu Ling From: Prasad J Pandit The 'net_checksum_calculate' routine reads payload length from the packet. It could exceed the given data length value and lead to OOB memory access. While fixing that I also came across couple of minor coding style glitches. This series fixes both these issues as per review in -> https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg03799.html -> https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg04062.html Thank you. -- Prasad J Pandit (2): net: check packet payload length net: minor indentation updates net/checksum.c | 30 +++++++++++++++++++----------- 1 file changed, 19 insertions(+), 11 deletions(-) -- 2.5.0