Commit 736b0164 authored by Klaus Jensen's avatar Klaus Jensen 🍻
Browse files

hw/nvme: fix CVE-2021-3929



This fixes CVE-2021-3929 "locally" by denying DMA to the iomem of the
device itself. This still allows DMA to MMIO regions of other devices
(e.g. doing P2P DMA to the controller memory buffer of another NVMe
device).

Fixes: CVE-2021-3929
Reported-by: default avatarQiuhao Li <Qiuhao.Li@outlook.com>
Reviewed-by: default avatarKeith Busch <kbusch@kernel.org>
Reviewed-by: default avatarPhilippe Mathieu-Daudé <f4bug@amsat.org>
Signed-off-by: default avatarKlaus Jensen <k.jensen@samsung.com>
parent 48033ad6
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment