Searched hist:"6 d7a53e9f16d2b18d94f9fce1e4eea34570286ef" (Results 1 – 1 of 1) sorted by relevance
| /qemu/net/ |
| H A D | tap.c | 6d7a53e9f16d2b18d94f9fce1e4eea34570286ef Thu Aug 24 15:32:24 UTC 2023 Peter Maydell <peter.maydell@linaro.org> net/tap: Avoid variable-length array
Use a heap allocation instead of a variable length array in
tap_receive_iov().
The codebase has very few VLAs, and if we can get rid of them all we
can make the compiler error on new additions. This is a defensive
measure against security bugs where an on-stack dynamic allocation
isn't correctly size-checked (e.g. CVE-2021-3527).
Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
Reviewed-by: Francisco Iglesias <frasse.iglesias@gmail.com>
Signed-off-by: Jason Wang <jasowang@redhat.com>
|