subject:"\[PATCH v3\] hw\/net\/virtio\-net.c\: fix crash in iov_copy\(\)"

Re: [PATCH v3] hw/net/virtio-net.c: fix crash in iov_copy()

2024-07-01 Thread Michael S. Tsirkin

On Thu, Jun 13, 2024 at 05:35:30PM +0300, Dmitry Frolov wrote: > A crash found while fuzzing device virtio-net-socket-check-used. > Assertion "offset == 0" in iov_copy() fails if less than guest_hdr_len bytes > were transmited. > > Signed-off-by: Dmitry Frolov Reviewed-by: Michael S. Tsirkin J

[PATCH v3] hw/net/virtio-net.c: fix crash in iov_copy()

2024-06-13 Thread Dmitry Frolov

A crash found while fuzzing device virtio-net-socket-check-used. Assertion "offset == 0" in iov_copy() fails if less than guest_hdr_len bytes were transmited. Signed-off-by: Dmitry Frolov --- v1: https://patchew.org/QEMU/20240527133140.218300-2-fro...@swemel.ru/ v2: broken v3: goto instead of rep