From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([208.118.235.92]:59723) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1SyOBf-00017n-9L for qemu-devel@nongnu.org; Mon, 06 Aug 2012 10:21:40 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1SyOBe-000509-7v for qemu-devel@nongnu.org; Mon, 06 Aug 2012 10:21:39 -0400 Received: from cantor2.suse.de ([195.135.220.15]:50518 helo=mx2.suse.de) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1SyOBe-000504-16 for qemu-devel@nongnu.org; Mon, 06 Aug 2012 10:21:38 -0400 Message-ID: <501FD2EE.6050202@suse.de> Date: Mon, 06 Aug 2012 16:21:34 +0200 From: =?ISO-8859-1?Q?Andreas_F=E4rber?= MIME-Version: 1.0 References: <1344257343-11298-1-git-send-email-avi@redhat.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: [Qemu-devel] [PATCH master/stable] virtio-mlk: fix use-after-free while handling scsi commands List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Avi Kivity , Kevin Wolf Cc: Stefan Hajnoczi , qemu-devel@nongnu.org Am 06.08.2012 15:11, schrieb Stefan Hajnoczi: > On Mon, Aug 6, 2012 at 1:49 PM, Avi Kivity wrote: >> The scsi passthrough handler falls through after completing a >> request into the failure path, resulting in a use after free. >> >> Reprducible by running a guest with aio=3Dnative on a block device. While at it, also "Reproducible". /-F >> >> Reported-by: Stefan Priebe >> Signed-off-by: Avi Kivity >> --- >> hw/virtio-blk.c | 1 + >> 1 file changed, 1 insertion(+) >=20 > It would be nice to fix up the commit message: > s/virtio-mlk/virtio-blk/ >=20 > Reviewed-by: Stefan Hajnoczi --=20 SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 N=FCrnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imend=F6rffer; HRB 16746 AG N=FCrnbe= rg