Snippets Groups Projects

Commit 736b0164 authored 3 years ago by Klaus Jensen

hw/nvme: fix CVE-2021-3929


This fixes CVE-2021-3929 "locally" by denying DMA to the iomem of the
device itself. This still allows DMA to MMIO regions of other devices
(e.g. doing P2P DMA to the controller memory buffer of another NVMe
device).

Fixes: CVE-2021-3929
Reported-by: Qiuhao Li <Qiuhao.Li@outlook.com>
Reviewed-by: Keith Busch <kbusch@kernel.org>
Reviewed-by: Philippe Mathieu-Daudé <f4bug@amsat.org>
Signed-off-by: Klaus Jensen <k.jensen@samsung.com>

parent 48033ad6

No related branches found

No related tags found

No related merge requests found

Show whitespace changes

Inline Side-by-side

Showing with 22 additions and 0 deletions

Thomas Huth @thuth
mentioned in issue #782 (closed)
· 3 years ago

mentioned in issue #782 (closed)

mentioned in issue #782

Toggle commit list

Please register or to comment