commit f21119e76135550f35cd7dea8ab1e155fdf96b80 Author: Thomas Penteker <tek@serverop.de> Date: Sun Apr 20 20:57:38 2014 +0200 qemu: fix CVE-2014-0150 diff --git a/qemu/Pkgfile b/qemu/Pkgfile index 0806ee4..baf4831 100644 --- a/qemu/Pkgfile +++ b/qemu/Pkgfile @@ -7,7 +7,7 @@ name=qemu version=2.0.0 -release=1 +release=2 source=(http://wiki.qemu.org/download/qemu-$version.tar.bz2) build() { @@ -24,6 +24,10 @@ build() { --localstatedir=/var \ --target-list=x86_64-linux-user,i386-linux-user,i386-softmmu,x86_64-softmmu + # fix CVE-2014-0150 + sed -i '/if (in_use + mac_data.entries <= MAC_TABLE_ENTRIES) {/if \ + (mac_data.entries <= MAC_TABLE_ENTRIES - in_use) {/' hw/net/virtio-net.c + # fix include issues with libcap sed -i -e '/#include "qemu\/xattr.h"/d' \ -e 's|#include <sys/resource.h>|#include <sys/resource.h>\r\n#include "qemu\/xattr.h"|g' \