block: fix dangling bs->explicit_options in block.c - focaccia-qemu - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Manos Pitsidianakis <el13635@mail.ntua.gr>	2017-07-14 17:35:47 +0300
committer	Kevin Wolf <kwolf@redhat.com>	2017-08-01 18:09:33 +0200
commit	998cbd6a44cd96044f56713274bdf6a94cd721c0 (patch)
tree	99a0ad9848071b96050e36914d96ac6570ab4958 /hw/timer/stm32f2xx_timer.c
parent	b81b74bfb2ea3d23dc06cb0c84841dbea201b8de (diff)
download	focaccia-qemu-998cbd6a44cd96044f56713274bdf6a94cd721c0.tar.gz focaccia-qemu-998cbd6a44cd96044f56713274bdf6a94cd721c0.zip

block: fix dangling bs->explicit_options in block.c

In some error paths it is possible to QDECREF a freed dangling
explicit_options, resulting in a heap overflow crash.  For example
bdrv_open_inherit()'s fail unrefs it, then calls bdrv_unref which calls
bdrv_close which also unrefs it.

Signed-off-by: Manos Pitsidianakis <el13635@mail.ntua.gr>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>

Diffstat (limited to 'hw/timer/stm32f2xx_timer.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: