[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] [PATCH]: xc: fix segfault in pv domain create if kernel is an invalid image

To: Xen Devel <xen-devel@xxxxxxxxxxxxxxxxxxx>
From: Gianni Tedesco <gianni.tedesco@xxxxxxxxxx>
Date: Mon, 9 Aug 2010 17:04:56 +0100
Delivery-date: Mon, 09 Aug 2010 09:09:48 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

If libelf calls elf_err() or elf_msg() before elf_set_log() has been
called then it could potentially read an uninitialised log handling
callback function pointer from struct elf_binary. Fix this in libxc by
zeroing the structure before calling elf_init().

Signed-off-by: Gianni Tedesco <gianni.tedesco@xxxxxxxxxx>

diff -r ac93a1ec290c tools/libxc/xc_hvm_build.c
--- a/tools/libxc/xc_hvm_build.c        Mon Aug 09 16:10:41 2010 +0100
+++ b/tools/libxc/xc_hvm_build.c        Mon Aug 09 17:04:28 2010 +0100
@@ -141,6 +141,7 @@ static int setup_guest(xc_interface *xch
     if ( memsize > target )
         pod_mode = 1;
 
+    memset(&elf, 0, sizeof(elf));
     if ( elf_init(&elf, image, image_size) != 0 )
         goto error_out;
     elf_parse_binary(&elf);



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH]: xc: fix segfault in pv domain create if kernel is an invalid image
  - From: Stefano Stabellini

Prev by Date: [Xen-devel] need for ClearPageReserved() in blktap2 code
Next by Date: Re: [Xen-devel] [PATCH 3/3]: xl: allow long listing of Domain 0'
Previous by thread: [Xen-devel] need for ClearPageReserved() in blktap2 code
Next by thread: Re: [Xen-devel] [PATCH]: xc: fix segfault in pv domain create if kernel is an invalid image
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.