summary refs log tree commit diff stats
path: root/gitlab/issues_text/target_missing/host_missing/accel_missing/1171
diff options
context:
space:
mode:
authorChristian Krinitsin <mail@krinitsin.com>2025-06-01 21:35:14 +0200
committerChristian Krinitsin <mail@krinitsin.com>2025-06-01 21:35:14 +0200
commit3e4c5a6261770bced301b5e74233e7866166ea5b (patch)
tree9379fddaba693ef8a045da06efee8529baa5f6f4 /gitlab/issues_text/target_missing/host_missing/accel_missing/1171
parente5634e2806195bee44407853c4bf8776f7abfa4f (diff)
downloadqemu-analysis-3e4c5a6261770bced301b5e74233e7866166ea5b.tar.gz
qemu-analysis-3e4c5a6261770bced301b5e74233e7866166ea5b.zip
clean up repository
Diffstat (limited to 'gitlab/issues_text/target_missing/host_missing/accel_missing/1171')
-rw-r--r--gitlab/issues_text/target_missing/host_missing/accel_missing/11713


1 files changed, 0 insertions, 3 deletions
diff --git a/gitlab/issues_text/target_missing/host_missing/accel_missing/1171 b/gitlab/issues_text/target_missing/host_missing/accel_missing/1171
deleted file mode 100644
index 65d6dc5fa..000000000
--- a/gitlab/issues_text/target_missing/host_missing/accel_missing/1171
+++ /dev/null
@@ -1,3 +0,0 @@
-tulip: DMA reentrancy issue leads to stack overflow (CVE-2022-2962)
-Description of problem:
-A DMA reentrancy issue was found in the tulip emulation. When tulip reads or writes to  rx/tx descriptor ( tulip_desc_read/write ) or copies  rx/tx frame(tulip_copy_rx_bytes / tulip_copy_tx_buffers), it doesn't check whether the destination address is its own MMIO address. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition or, potentially, executing arbitrary code within the context of the QEMU process on the host.