libvirt/qemu at 92a5d12157a7286ec775bd47c6bde29ec63b91d1 - libvirt - Gitea

External/libvirt

mirror of https://gitlab.com/libvirt/libvirt.git synced 2025-01-18 18:45:16 +00:00

History

Daniel P. Berrangé fbf31e1a4c qemu: avoid denial of service reading from QEMU guest agent (CVE-2018-1064)

We read from the agent until seeing a \r\n pair to indicate a completed
reply or event. To avoid memory denial-of-service though, we must have a
size limit on amount of data we buffer. 10 MB is large enough that it
ought to cope with normal agent replies, and small enough that we're not
consuming unreasonable mem.

This is identical to the flaw we had reading from the QEMU monitor
as CVE-2018-5748, so rather embarrassing that we forgot to fix
the agent code at the same time.

Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>

2018-03-14 12:16:42 +00:00

..

EVENTHANDLERS.txt

…

libvirtd_qemu.aug

Revert "qemu: Expose rx/tx_queue_size in qemu.conf too"

2018-02-12 14:56:29 +00:00

Makefile.inc.am

make: split qemu driver build rules into qemu/Makefile.inc.am

2018-02-23 13:14:26 +00:00

MIGRATION.txt

…

qemu_agent.c

qemu: avoid denial of service reading from QEMU guest agent (CVE-2018-1064)

2018-03-14 12:16:42 +00:00

qemu_agent.h

…

qemu_alias.c

qemuAssignDeviceInputAlias: Be tolerant to pre-existent alias

2018-03-13 15:17:19 +01:00

qemu_alias.h

qemu: different declarations for the same method

2018-03-12 11:02:09 +01:00

qemu_block.c

storage: Fix formatting and parsing of qemu type 'UnixSocketAddress'

2018-02-14 15:58:04 +01:00

qemu_block.h

qemu: block: Add function to check if storage source allows concurrent access

2017-11-23 18:26:25 +01:00

qemu_blockjob.c

qemu: blockjob: Reset disk source index after pivot

2017-12-08 10:13:57 +01:00

qemu_blockjob.h

qemu: report drive mirror errors on migration

2017-12-06 12:43:57 +01:00

qemu_capabilities.c

qemu: Remove virQEMUCapsProcessProps()

2018-03-08 16:05:47 +01:00

qemu_capabilities.h

qemu: Add dump completed event to the capabilities

2018-02-02 15:19:14 -05:00

qemu_capspriv.h

qemu: Refresh caps cache after booting a different kernel

2018-01-22 14:11:58 +01:00

qemu_cgroup.c

qemu: Restore machinename even without cgroups

2018-01-31 14:51:34 +01:00

qemu_cgroup.h

qemu: Introduce functions for input device cgroup manipulation

2017-11-24 17:38:51 +01:00

qemu_command.c

qemu: handle missing switch enum cases

2018-02-21 16:59:10 +00:00

qemu_command.h

Revert "qemu: Expose rx/tx_queue_size in qemu.conf too"

2018-02-12 14:56:29 +00:00

qemu_conf.c

conf: stop passing virConnectPtr into virDomainDiskTranslateSourcePool

2018-02-19 11:11:47 +00:00

qemu_conf.h

port allocator: make port range constant object

2018-02-22 13:52:45 +01:00

qemu_domain_address.c

qemuDomainUSBAddressAddHubs: use numeric comparison

2018-03-13 10:38:48 +01:00

qemu_domain_address.h

qemu: Update qemuDomainFindSCSIControllerModel return

2018-01-31 11:32:04 -05:00

qemu_domain.c

qemu: domain: Extract parsing of job-related private XML

2018-03-13 13:54:11 +01:00

qemu_domain.h

qemu: don't pass virConnectPtr around for secrets

2018-02-19 11:11:47 +00:00

qemu_driver.c

keycodemapdb: Update submodule

2018-03-12 16:30:49 +01:00

qemu_driver.h

…

qemu_hostdev.c

…

qemu_hostdev.h

…

qemu_hotplug.c

qemu_hotplug: Drop dead code in net update

2018-02-23 11:52:44 +01:00

qemu_hotplug.h

qemu: don't pass virConnectPtr around for secrets

2018-02-19 11:11:47 +00:00

qemu_hotplugpriv.h

…

qemu_interface.c

…

qemu_interface.h

…

qemu_migration_cookie.c

qemu: fix memory leak of @vporttype during migration.

2018-02-28 07:56:17 +01:00

qemu_migration_cookie.h

qemu: send allowReboot in migration cookie

2017-10-19 11:52:34 +02:00

qemu_migration.c

qemu: simplify condition

2018-03-08 17:40:56 +01:00

qemu_migration.h

qemu: Add virConnectPtr back to some migration methods

2018-02-26 11:32:27 +01:00

qemu_monitor_json.c

qemu: log the crash information for S390

2018-03-06 08:55:12 -05:00

qemu_monitor_json.h

qemu: stop passing virConnectPtr into qemuMonitorStartCPUs

2018-02-19 11:11:46 +00:00

qemu_monitor_text.c

qemu: stop passing virConnectPtr into qemuMonitorStartCPUs

2018-02-19 11:11:46 +00:00

qemu_monitor_text.h

qemu: stop passing virConnectPtr into qemuMonitorStartCPUs

2018-02-19 11:11:46 +00:00

qemu_monitor.c

qemu: log the crash information for S390

2018-03-06 08:55:12 -05:00

qemu_monitor.h

qemu: log the crash information for S390

2018-03-06 08:55:12 -05:00

qemu_parse_command.c

qemu: Remove private hostdev

2017-11-24 11:47:26 -05:00

qemu_parse_command.h

qemu: Move qemuFreeKeywords into qemu_parse_command.c

2017-10-17 18:52:47 -04:00

qemu_process.c

qemuProcessLaunch: Print all arguments to debug

2018-02-26 11:32:14 +01:00

qemu_process.h

qemu: remove virConnectPtr from some more startup code paths

2018-02-19 11:11:47 +00:00

qemu_processpriv.h

…

qemu_security.c

qemu: fix security labeling for attach/detach of char devices

2017-12-05 13:54:48 +01:00

qemu_security.h

qemu: fix security labeling for attach/detach of char devices

2017-12-05 13:54:48 +01:00

qemu.conf

Revert "qemu: Expose rx/tx_queue_size in qemu.conf too"

2018-02-12 14:56:29 +00:00

test_libvirtd_qemu.aug.in

Revert "qemu: Expose rx/tx_queue_size in qemu.conf too"

2018-02-12 14:56:29 +00:00

THREADS.txt

…