]> git.proxmox.com Git - pve-qemu.git/commit
projects / pve-qemu.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 67af0fa) | patch
add CVE fixes
authorWolfgang Bumiller <w.bumiller@proxmox.com>
Mon, 7 Aug 2017 08:31:59 +0000 (10:31 +0200)
committerWolfgang Bumiller <w.bumiller@proxmox.com>
Mon, 7 Aug 2017 08:32:32 +0000 (10:32 +0200)
commite74c0f316d2d18b17b5fd617f7be8ed2150d5d63
tree9b81d006559b0ab502bcf0b7ddd42eaafdc1a505tree
parent67af0fa481fc1cab8873a4d8393b865f94bda859commit | diff
add CVE fixes

 CVE-2017-7539:
   qemu-nbd crashes due to undefined I/O coroutine
 CVE-2017-11434:
   slirp: out-of-bounds read while parsing dhcp options
 CVE-2017-11334:
   exec: oob access during dma operation
 CVE-2017-10806:
   usb-redirect: stack buffer overflow in debug logging
 CVE-2017-10664:
   qemu-nbd: server breaks with SIGPIPE upon client abort
 CVE-2017-9524:
   nbd: segmentation fault due to client non-negotiation
 CVE-2017-9503:
   scsi: null pointer dereference while processing megasas command
24 files changed:
debian/patches/extra/0001-Revert-target-i386-disable-LINT0-after-reset.patch diff | blob | blame | history
debian/patches/extra/0002-qemu-img-wait-for-convert-coroutines-to-complete.patch diff | blob | blame | history
debian/patches/extra/0003-block-Do-not-unref-bs-file-on-error-in-BD-s-open.patch diff | blob | blame | history
debian/patches/extra/0004-9pfs-local-fix-unlink-of-alien-files-in-mapped-file-.patch diff | blob | blame | history
debian/patches/extra/0005-blockdev-use-drained_begin-end-for-qmp_block_resize.patch diff | blob | blame | history
debian/patches/extra/0006-aio-add-missing-aio_notify-to-aio_enable_external.patch diff | blob | blame | history
debian/patches/extra/0007-virtio-serial-bus-Unset-hotplug-handler-when-unreali.patch diff | blob | blame | history
debian/patches/extra/0008-virtio-serial-fix-segfault-on-disconnect.patch diff | blob | blame | history
debian/patches/extra/0009-e1000e-Fix-ICR-Other-causes-clear-logic.patch diff | blob | blame | history
debian/patches/extra/0010-mirror-Drop-permissions-on-s-target-on-completion.patch diff | blob | blame | history
debian/patches/extra/0011-vmw_pvscsi-check-message-ring-page-count-at-initiali.patch diff | blob | blame | history
debian/patches/extra/0012-audio-release-capture-buffers.patch diff | blob | blame | history
debian/patches/extra/0013-input-limit-kbd-queue-depth.patch diff | blob | blame | history
debian/patches/extra/0014-scsi-avoid-an-off-by-one-error-in-megasas_mmio_write.patch diff | blob | blame | history
debian/patches/extra/0015-9pfs-local-forbid-client-access-to-metadata-CVE-2017.patch diff | blob | blame | history
debian/patches/extra/0016-megasas-do-not-read-DCMD-opcode-more-than-once-from-.patch [new file with mode: 0644] blob
debian/patches/extra/0017-megasas-always-store-SCSIRequest-into-MegasasCmd.patch [new file with mode: 0644] blob
debian/patches/extra/0018-nbd-Fully-initialize-client-in-case-of-failed-negoti.patch [new file with mode: 0644] blob
debian/patches/extra/0019-nbd-Fix-regression-on-resiliency-to-port-scan.patch [new file with mode: 0644] blob
debian/patches/extra/0020-qemu-nbd-Ignore-SIGPIPE.patch [new file with mode: 0644] blob
debian/patches/extra/0021-usb-redir-fix-stack-overflow-in-usbredir_log_data.patch [new file with mode: 0644] blob
debian/patches/extra/0022-exec-use-qemu_ram_ptr_length-to-access-guest-ram.patch [new file with mode: 0644] blob
debian/patches/extra/0023-slirp-check-len-against-dhcp-options-array-end.patch [new file with mode: 0644] blob
debian/patches/series diff | blob | blame | history
QEMU for PVE