aboutsummaryrefslogtreecommitdiff
path: root/slirp/mbuf.c
diff options
context:
space:
mode:
authorMarc-André Lureau <marcandre.lureau@redhat.com>2020-04-21 19:02:27 +0200
committerMichael Roth <mdroth@linux.vnet.ibm.com>2020-06-22 12:27:12 -0500
commit862240852be8ddb6fa720e84e83e234cee848b2f (patch)
treeef42687c91dbd41b3fa82aa48c1196a43e82e6b8 /slirp/mbuf.c
parent1343d333714e9ff5482d31950cc87890e391ab7b (diff)
downloadqemu-862240852be8ddb6fa720e84e83e234cee848b2f.zip
qemu-862240852be8ddb6fa720e84e83e234cee848b2f.tar.gz
qemu-862240852be8ddb6fa720e84e83e234cee848b2f.tar.bz2
slirp: update to fix CVE-2020-1983
This is an update on the stable-4.2 branch of libslirp.git: git shortlog 55ab21c9a3..2faae0f778f81 Marc-André Lureau (1): Fix use-afte-free in ip_reass() (CVE-2020-1983) CVE-2020-1983 is actually a follow up fix for commit 126c04acbabd7ad32c2b018fe10dfac2a3bc1210 ("Fix heap overflow in ip_reass on big packet input") which was was included in qemu v4.1 (commit e1a4a24d262ba5ac74ea1795adb3ab1cd574c7fb "slirp: update with CVE-2019-14378 fix"). Signed-off-by: Marc-André Lureau <marcandre.lureau@redhat.com> Message-id: 20200421170227.843555-1-marcandre.lureau@redhat.com Signed-off-by: Peter Maydell <peter.maydell@linaro.org> (cherry picked from commit 7769c23774d1278f60b9e40d2c0b98784de6425f) Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
Diffstat (limited to 'slirp/mbuf.c')
m---------slirp0
1 files changed, 0 insertions, 0 deletions
diff --git a/slirp b/slirp
-Subproject 126c04acbabd7ad32c2b018fe10dfac2a3bc121
+Subproject 2faae0f778f818fadc873308f983289df697eb9