Searched hist:"998 cbd6a44cd96044f56713274bdf6a94cd721c0" (Results 1 – 1 of 1) sorted by relevance
| /openbmc/qemu/ |
| H A D | block.c | diff 998cbd6a44cd96044f56713274bdf6a94cd721c0 Fri Jul 14 09:35:47 CDT 2017 Manos Pitsidianakis <el13635@mail.ntua.gr> block: fix dangling bs->explicit_options in block.c
In some error paths it is possible to QDECREF a freed dangling
explicit_options, resulting in a heap overflow crash. For example
bdrv_open_inherit()'s fail unrefs it, then calls bdrv_unref which calls
bdrv_close which also unrefs it.
Signed-off-by: Manos Pitsidianakis <el13635@mail.ntua.gr>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
|