From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1FaOSj-0001o5-Me for qemu-devel@nongnu.org; Sun, 30 Apr 2006 22:48:37 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1FaOSh-0001n6-D4 for qemu-devel@nongnu.org; Sun, 30 Apr 2006 22:48:36 -0400 Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1FaOSh-0001n3-7m for qemu-devel@nongnu.org; Sun, 30 Apr 2006 22:48:35 -0400 Received: from [64.233.162.207] (helo=nz-out-0102.google.com) by monty-python.gnu.org with esmtp (Exim 4.52) id 1FaOWP-0006pV-P0 for qemu-devel@nongnu.org; Sun, 30 Apr 2006 22:52:25 -0400 Received: by nz-out-0102.google.com with SMTP id 14so2646958nzn for ; Sun, 30 Apr 2006 19:48:34 -0700 (PDT) Message-ID: Date: Sun, 30 Apr 2006 19:48:34 -0700 From: "Ed Swierk" Sender: eswierk@gmail.com MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_Part_8676_3514507.1146451714525" Subject: [Qemu-devel] [PATCH] Fix crash due to faulty realloc logic in slirp/mbuf.c Reply-To: qemu-devel@nongnu.org List-Id: qemu-devel.nongnu.org List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: qemu-devel@nongnu.org ------=_Part_8676_3514507.1146451714525 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64 Content-Disposition: inline VGhlIGF0dGFjaGVkIHBhdGNoIGZpeGVzIGEgYnVnIGluIHRoZSBzbGlycCBtZW1vcnkgbWFuYWdl bWVudCBjb2RlLgptX2luYygpIGlzIGNhbGxlZCBkdXJpbmcgSVAgcmVhc3NlbWJseSBmb3IgSVAg ZGF0YWdyYW1zIGdyZWF0ZXIgdGhhbiA0CktCLCBhcyBhcmlzZXMgd2l0aCBORlMuIEN1cnJlbnRs eSB0aGUgY29kZSBhc3N1bWVzIHRoYXQgcmVhbGxvYygpCmFsd2F5cyByZXNpemVzIHRoZSBidWZm ZXIgd2l0aG91dCBtb3ZpbmcgaXQ7IGlmIHRoZSBidWZmZXIgaXMgbW92ZWQsCnRoZSBtX2RhdGEg cG9pbnRlciBpcyBsZWZ0IHBvaW50aW5nIHRvIGFuIGludmFsaWQgbG9jYXRpb24uIFRoZSBidWcK Y2F1c2VzIHFlbXUgdG8gY3Jhc2ggd2hlbiB0aGVyZSBpcyBhbnkgc2lnbmlmaWNhbnQgYW1vdW50 IG9mIE5GUwp0cmFmZmljLgoKVGhlIHBhdGNoIHJlc3RvcmVzIHNvbWUgY29tbWVudGVkLW91dCBj b2RlIHRoYXQgdXBkYXRlcyBtX2RhdGEgY29ycmVjdGx5LgoKLS1FZAo= ------=_Part_8676_3514507.1146451714525 Content-Type: text/x-patch; name="qemu-slirp-mbuf-bug.patch" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="qemu-slirp-mbuf-bug.patch" X-Attachment-Id: f_emo7qnrk ZGlmZiAtQnVyTiBxZW11LXNuYXBzaG90LTIwMDYtMDMtMjdfMjMub3JpZy9zbGlycC9tYnVmLmMg cWVtdS1zbmFwc2hvdC0yMDA2LTAzLTI3XzIzL3NsaXJwL21idWYuYwotLS0gcWVtdS1zbmFwc2hv dC0yMDA2LTAzLTI3XzIzLm9yaWcvc2xpcnAvbWJ1Zi5jCTIwMDQtMDQtMjIgMDA6MTA6NDcuMDAw MDAwMDAwICswMDAwCisrKyBxZW11LXNuYXBzaG90LTIwMDYtMDMtMjdfMjMvc2xpcnAvbWJ1Zi5j CTIwMDYtMDQtMDUgMTM6MDM6MDMuMDAwMDAwMDAwICswMDAwCkBAIC0xNDYsMTggKzE0NiwxOSBA QAogICAgICAgICBzdHJ1Y3QgbWJ1ZiAqbTsKICAgICAgICAgaW50IHNpemU7CiB7CisJaW50IGRh dGFzaXplOworCiAJLyogc29tZSBjb21waWxlcyB0aHJvdyB1cCBvbiBnb3Rvcy4gIFRoaXMgb25l IHdlIGNhbiBmYWtlLiAqLwogICAgICAgICBpZihtLT5tX3NpemU+c2l6ZSkgcmV0dXJuOwogCiAg ICAgICAgIGlmIChtLT5tX2ZsYWdzICYgTV9FWFQpIHsKLQkgIC8qIGRhdGFzaXplID0gbS0+bV9k YXRhIC0gbS0+bV9leHQ7ICovCisJICBkYXRhc2l6ZSA9IG0tPm1fZGF0YSAtIG0tPm1fZXh0Owog CSAgbS0+bV9leHQgPSAoY2hhciAqKXJlYWxsb2MobS0+bV9leHQsc2l6ZSk7CiAvKgkJaWYgKG0t Pm1fZXh0ID09IE5VTEwpCiAgKgkJCXJldHVybiAoc3RydWN0IG1idWYgKilOVUxMOwogICovCQkK LQkgIC8qIG0tPm1fZGF0YSA9IG0tPm1fZXh0ICsgZGF0YXNpemU7ICovCisJICBtLT5tX2RhdGEg PSBtLT5tX2V4dCArIGRhdGFzaXplOwogICAgICAgICB9IGVsc2UgewotCSAgaW50IGRhdGFzaXpl OwogCSAgY2hhciAqZGF0OwogCSAgZGF0YXNpemUgPSBtLT5tX2RhdGEgLSBtLT5tX2RhdDsKIAkg IGRhdCA9IChjaGFyICopbWFsbG9jKHNpemUpOwo= ------=_Part_8676_3514507.1146451714525--