External/libvirt
1
0
Fork 0
mirror of https://gitlab.com/libvirt/libvirt.git synced 2025-01-08 22:15:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
16ee93cc7a
libvirt/daemon
History
Daniel P. Berrange a413bc2dda Fix crash in remoteDispatchDomainMemoryStats (CVE-2013-4296) 
The 'stats' variable was not initialized to NULL, so if some
early validation of the RPC call fails, it is possible to jump
to the 'cleanup' label and VIR_FREE an uninitialized pointer.
This is a security flaw, since the API can be called from a
readonly connection which can trigger the validation checks.

This was introduced in release v0.9.1 onwards by

  commit 158ba8730e
  Author: Daniel P. Berrange <berrange@redhat.com>
  Date:   Wed Apr 13 16:21:35 2011 +0100

    Merge all returns paths from dispatcher into single path

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
(cherry picked from commit e7f400a110)

Conflicts:
	daemon/remote.c - context
2013-09-18 15:08:35 -06:00
..
libvirtd-config.c
libvirtd-config.h
libvirtd.aug
libvirtd.c
libvirtd.conf
libvirtd.h
libvirtd.init.in
libvirtd.logrotate.in
libvirtd.lxc.logrotate.in
libvirtd.pod.in
libvirtd.policy.in
libvirtd.qemu.logrotate.in
libvirtd.sasl
libvirtd.service.in libvirt does not logout of iscsi targets, causing system hang on shutdown 2013-03-04 06:28:57 -07:00
libvirtd.sysconf
libvirtd.sysctl
libvirtd.uml.logrotate.in
libvirtd.upstart
Makefile.am
remote.c Fix crash in remoteDispatchDomainMemoryStats (CVE-2013-4296) 2013-09-18 15:08:35 -06:00
remote.h
stream.c
stream.h
test_libvirtd.aug.in
THREADS.txt