]> git.proxmox.com Git - mirror_qemu.git/commit - block/qcow2.h
projects / mirror_qemu.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8c7de28) | patch
qcow2: Validate snapshot table offset/size (CVE-2014-0144)
authorKevin Wolf <kwolf@redhat.com>
Wed, 26 Mar 2014 12:05:45 +0000 (13:05 +0100)
committerStefan Hajnoczi <stefanha@redhat.com>
Tue, 1 Apr 2014 12:19:09 +0000 (14:19 +0200)
commitce48f2f441ca98885267af6fd636a7cb804ee646
treebd5dd8a13a805d7408162ed456389cf868f472f9tree
parent8c7de28305a514d7f879fdfc677ca11fbf60d2e9commit | diff
qcow2: Validate snapshot table offset/size (CVE-2014-0144)

This avoid unbounded memory allocation and fixes a potential buffer
overflow on 32 bit hosts.

Signed-off-by: Kevin Wolf <kwolf@redhat.com>
Reviewed-by: Max Reitz <mreitz@redhat.com>
Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
block/qcow2-snapshot.c diff | blob | blame | history
block/qcow2.c diff | blob | blame | history
block/qcow2.h diff | blob | blame | history
tests/qemu-iotests/080 diff | blob | blame | history
tests/qemu-iotests/080.out diff | blob | blame | history
QEMU mirror