Re: [PATCH] msix: add valid.accepts methods to check address

2020-06-01 Thread P J P
+-- On Mon, 1 Jun 2020, Philippe Mathieu-Daudé wrote --+ | Fixes: CVE-2020-x 'CVE-2020-13754' assigned to this issue by Mitre. -> https://bugzilla.redhat.com/show_bug.cgi?id=1842363 Thank you. -- Prasad J Pandit / Red Hat Product Security Team 8685 545E B54C 486B C6EB 271E E285 8B5A F050 D

Re: [PATCH] msix: add valid.accepts methods to check address

2020-05-31 Thread P J P
+-- On Mon, 1 Jun 2020, Michael S. Tsirkin wrote --+ | IMHO this is just messed up, memory core needs to guarantee this. | I'm working on a patch to do that. Okay. Thank you. -- Prasad J Pandit / Red Hat Product Security Team 8685 545E B54C 486B C6EB 271E E285 8B5A F050 DE8D

Re: [PATCH] msix: add valid.accepts methods to check address

2020-05-31 Thread Michael S. Tsirkin
On Mon, Jun 01, 2020 at 10:44:54AM +0530, P J P wrote: > From: Prasad J Pandit > > While doing msi-x mmio operations, a guest may send an address > that leads to an OOB access issue. Add valid.accepts methods to > ensure that ensuing mmio r/w operation don't go beyond regions. > > Reported-by: R

Re: [PATCH] msix: add valid.accepts methods to check address

2020-05-31 Thread Philippe Mathieu-Daudé
On Mon, Jun 1, 2020 at 8:02 AM Philippe Mathieu-Daudé wrote: > On 6/1/20 7:14 AM, P J P wrote: > > From: Prasad J Pandit > > > > While doing msi-x mmio operations, a guest may send an address > > that leads to an OOB access issue. Add valid.accepts methods to > > ensure that ensuing mmio r/w oper

Re: [PATCH] msix: add valid.accepts methods to check address

2020-05-31 Thread Philippe Mathieu-Daudé
On 6/1/20 7:14 AM, P J P wrote: > From: Prasad J Pandit > > While doing msi-x mmio operations, a guest may send an address > that leads to an OOB access issue. Add valid.accepts methods to > ensure that ensuing mmio r/w operation don't go beyond regions. > Fixes: CVE-2020-x > Reported-by:

[PATCH] msix: add valid.accepts methods to check address

2020-05-31 Thread P J P
From: Prasad J Pandit While doing msi-x mmio operations, a guest may send an address that leads to an OOB access issue. Add valid.accepts methods to ensure that ensuing mmio r/w operation don't go beyond regions. Reported-by: Ren Ding Reported-by: Hanqing Zhao Reported-by: Anatoly Trosinenko