CVE-2014-7815 vnc: insufficient bits_per_pixel from the client sanitization (bz #1157647, bz #1157641)
CVE-2014-3689 vmware_vga: insufficient parameter validation in rectangle functions (bz #1153038, bz #1153035)
This commit is contained in:
Cole Robinson
parent
87dd0b268a
commit
1369de9828
@ -1,4 +1,3 @@
|
||||
From 2ad13e88a15c892d2732467bf8b8a6656c521c09 Mon Sep 17 00:00:00 2001
|
||||
From: Cole Robinson <crobinso@redhat.com>
|
||||
Date: Fri, 16 Aug 2013 12:14:51 -0400
|
||||
Subject: [PATCH] Fix migration from qemu-kvm
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ff175461008f3f782c8976b8ad898120b88bc846 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Tue, 13 Aug 2013 00:02:18 +0200
|
||||
Subject: [PATCH] isapc: disable kvmvapic
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From a995edb5118fb249619444dbb3218e461f661286 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Thu, 2 May 2013 11:38:37 +0200
|
||||
Subject: [PATCH] pci: do not export pci_bus_reset
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From eb42e0f25a3fc432443a0e9287968cfa5268f25f Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Thu, 2 May 2013 11:38:38 +0200
|
||||
Subject: [PATCH] qdev: allow both pre- and post-order vists in qdev walking
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 6158b4394ba67d1f488cb743ec3f4acb06c270e4 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Thu, 2 May 2013 11:38:39 +0200
|
||||
Subject: [PATCH] qdev: switch reset to post-order
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 07742515412e1240bcc3dc2a7b335839862583d4 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:50 +0200
|
||||
Subject: [PATCH] virtio-bus: remove vdev field
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From b8715ac95b5f0d1bf75b072bb245d7b041fe8ca9 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:51 +0200
|
||||
Subject: [PATCH] virtio-pci: remove vdev field
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From cb4b225256c2c12eaf0b53c6633c38ac7ad9561d Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:52 +0200
|
||||
Subject: [PATCH] virtio-ccw: remove vdev field
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From f547bed0159d3da84b66d8f6462642d79cced064 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:53 +0200
|
||||
Subject: [PATCH] virtio-bus: cleanup plug/unplug interface
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From f670d1a035292e1765ececcc72ef3343351f4af0 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:54 +0200
|
||||
Subject: [PATCH] virtio-blk: switch exit callback to VirtioDeviceClass
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 77d6cf9ef41cd7d01a8ca4ed9c36876da1043ca3 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:55 +0200
|
||||
Subject: [PATCH] virtio-serial: switch exit callback to VirtioDeviceClass
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 741a5a10161b87fbf324f13a4c8d7d0c1563e98b Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:56 +0200
|
||||
Subject: [PATCH] virtio-net: switch exit callback to VirtioDeviceClass
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 05677a87c77c56eb96e3e0b6842cc5d9a8ea48b1 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:57 +0200
|
||||
Subject: [PATCH] virtio-scsi: switch exit callback to VirtioDeviceClass
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 7805e853dfda059e3524cb564aef623a1a6aa6ef Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:58 +0200
|
||||
Subject: [PATCH] virtio-balloon: switch exit callback to VirtioDeviceClass
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From d1c9d98ee0e4128337f63649895994a7867312c0 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:57:59 +0200
|
||||
Subject: [PATCH] virtio-rng: switch exit callback to VirtioDeviceClass
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 555fd6699a04882775fc964830fea2447e0fa905 Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Fri, 20 Sep 2013 16:58:00 +0200
|
||||
Subject: [PATCH] virtio-pci: add device_unplugged callback
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 9faa24bdebcab5861acfa9fe390997d1eb319219 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Fri, 6 Sep 2013 12:32:25 +0200
|
||||
Subject: [PATCH] qcow2: Pass discard type to qcow2_discard_clusters()
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 08af434ab2532e22edc79898c6958ad6c44d10e1 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Fri, 6 Sep 2013 12:32:26 +0200
|
||||
Subject: [PATCH] qcow2: Discard VM state in active L1 after creating snapshot
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 7e1b10e09968a5d503feacc45eabe6608361a527 Mon Sep 17 00:00:00 2001
|
||||
From: "Daniel P. Berrange" <berrange@redhat.com>
|
||||
Date: Tue, 1 Oct 2013 12:28:17 +0100
|
||||
Subject: [PATCH] hw/9pfs: Fix errno value for xattr functions
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ef8acf5e5e525f5c757b57f9f3f0b3727459b6ad Mon Sep 17 00:00:00 2001
|
||||
From: Amos Kong <akong@redhat.com>
|
||||
Date: Fri, 15 Nov 2013 18:53:14 +0100
|
||||
Subject: [PATCH] qmp: access the local QemuOptsLists for drive option
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From df8a1ce561045d160793b3ef703be0383435e7f4 Mon Sep 17 00:00:00 2001
|
||||
From: Eduardo Otubo <otubo@linux.vnet.ibm.com>
|
||||
Date: Tue, 24 Sep 2013 14:50:44 -0300
|
||||
Subject: [PATCH] seccomp: fine tuning whitelist by adding times()
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From dd401ac8556becaea503205b32e3fc117559d960 Mon Sep 17 00:00:00 2001
|
||||
From: Gerd Hoffmann <kraxel@redhat.com>
|
||||
Date: Mon, 2 Dec 2013 11:17:04 +0100
|
||||
Subject: [PATCH] spice: flip streaming video mode to off by default
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From d6f315b934c7b0311899636a1d90f01e94ebcaeb Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Thu, 28 Nov 2013 11:01:13 +0100
|
||||
Subject: [PATCH] scsi-bus: fix transfer length and direction for VERIFY
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ae768bf8d6f15a3cce8edf4602d86352beab506a Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Thu, 28 Nov 2013 11:18:56 +0100
|
||||
Subject: [PATCH] scsi-disk: fix VERIFY emulation
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 4c99df0e305aeb93405575daef6dc79de054f1aa Mon Sep 17 00:00:00 2001
|
||||
From: Peter Lieven <pl@kamp.de>
|
||||
Date: Thu, 24 Oct 2013 09:21:29 +0200
|
||||
Subject: [PATCH] migration: drop MADVISE_DONT_NEED for incoming zero pages
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 61ec7dc46f8acad7ea6be4ba1993048f7404b0e3 Mon Sep 17 00:00:00 2001
|
||||
From: Christophe Fergeau <cfergeau@redhat.com>
|
||||
Date: Thu, 30 Jan 2014 14:56:49 +0100
|
||||
Subject: [PATCH] libcacard: Don't link with all libraries QEMU links to
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 8273919dfbb42ab63c683ec73264f94178cfe82e Mon Sep 17 00:00:00 2001
|
||||
From: Cole Robinson <crobinso@redhat.com>
|
||||
Date: Thu, 13 Mar 2014 15:30:23 -0400
|
||||
Subject: [PATCH] gtk: Fix mouse warping with gtk3
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 256b1b8cb133a1f26587e068fb403f067aeeaa59 Mon Sep 17 00:00:00 2001
|
||||
From: Cole Robinson <crobinso@redhat.com>
|
||||
Date: Thu, 13 Mar 2014 15:30:24 -0400
|
||||
Subject: [PATCH] gtk: Don't warp absolute pointer
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 94f0d20c1a3fa880fa4736c86bafd50c46e1cc57 Mon Sep 17 00:00:00 2001
|
||||
From: Cole Robinson <crobinso@redhat.com>
|
||||
Date: Wed, 19 Mar 2014 14:57:27 -0400
|
||||
Subject: [PATCH] Change gtk quit accelerator to ctrl+shift+q (bz 1062393)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From fcaec0080923656c3607bd4d5eccc5d05c468dda Mon Sep 17 00:00:00 2001
|
||||
From: Paolo Bonzini <pbonzini@redhat.com>
|
||||
Date: Wed, 15 Jan 2014 10:35:36 +0100
|
||||
Subject: [PATCH] scsi: Assign cancel_io vector for scsi_disk_emulate_ops
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From aa1e5b8649b8055722bf987d76322a1a1b46c407 Mon Sep 17 00:00:00 2001
|
||||
From: Eric Farman <farman@linux.vnet.ibm.com>
|
||||
Date: Tue, 14 Jan 2014 14:16:25 -0500
|
||||
Subject: [PATCH] virtio-scsi: Cleanup of I/Os that never started
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 167ceff41489ca932ae7e75b54bb62c119341b05 Mon Sep 17 00:00:00 2001
|
||||
From: Eric Farman <farman@linux.vnet.ibm.com>
|
||||
Date: Tue, 14 Jan 2014 14:16:26 -0500
|
||||
Subject: [PATCH] virtio-scsi: Prevent assertion on missed events
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 7b1d1698edefacf41d55b04097e147ebd993e788 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:25 +0100
|
||||
Subject: [PATCH] block/cloop: validate block_size header field (CVE-2014-0144)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 1d76b2c0c3d922ec0502cc09db7541ea374e7896 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:26 +0100
|
||||
Subject: [PATCH] block/cloop: prevent offsets_size integer overflow
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ed6cc104512967c5cf612972eb41ccb0f3f8a706 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:27 +0100
|
||||
Subject: [PATCH] block/cloop: refuse images with huge offsets arrays
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 07cd0610f0173508b3a1143e5bb0142c71e8cf81 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:28 +0100
|
||||
Subject: [PATCH] block/cloop: refuse images with bogus offsets (CVE-2014-0144)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From af26019bf167d71fc3a8e5d46865a4c53d58e976 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:29 +0100
|
||||
Subject: [PATCH] block/cloop: fix offsets[] size off-by-one
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 46aa5fa683fa4ae7805192b38043e50b43ff44f7 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:31 +0100
|
||||
Subject: [PATCH] bochs: Unify header structs and make them QEMU_PACKED
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From e55fb1cb78833b8da4d22ef7ea8eea33b9ebcaf9 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:32 +0100
|
||||
Subject: [PATCH] bochs: Use unsigned variables for offsets and sizes
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From bd50f1227195ea076a6acd47a9e5659ea2422a5a Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:33 +0100
|
||||
Subject: [PATCH] bochs: Check catalog_size header field (CVE-2014-0143)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ac1f8bc6b596935dd657fa582aaca3f08c1414fb Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:34 +0100
|
||||
Subject: [PATCH] bochs: Check extent_size header field (CVE-2014-0142)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 862ef70def5d8413e32618739e2875e501fb4d43 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:35 +0100
|
||||
Subject: [PATCH] bochs: Fix bitmap offset calculation
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From df1f28c754a7cf71139360ab3bbfa204b65949aa Mon Sep 17 00:00:00 2001
|
||||
From: Jeff Cody <jcody@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:36 +0100
|
||||
Subject: [PATCH] vpc/vhd: add bounds check for max_table_entries and
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 254a2b151c420091a1245d8bc8fef2907d73e291 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:37 +0100
|
||||
Subject: [PATCH] vpc: Validate block size (CVE-2014-0142)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ae25d949d7d500e2b59cd442e914c828823a5f2c Mon Sep 17 00:00:00 2001
|
||||
From: Jeff Cody <jcody@redhat.com>
|
||||
Date: Fri, 28 Mar 2014 11:42:24 -0400
|
||||
Subject: [PATCH] vdi: add bounds checks for blocks_in_image and disk_size
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From cf4d05bfef24e6e79ef3d6b90815009facf753d8 Mon Sep 17 00:00:00 2001
|
||||
From: Jeff Cody <jcody@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:39 +0100
|
||||
Subject: [PATCH] vhdx: Bounds checking for block_size and logical_sector_size
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ffce9ca1dfd6b53ac773a9dc956978ca4cf8a7d4 Mon Sep 17 00:00:00 2001
|
||||
From: Fam Zheng <famz@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:40 +0100
|
||||
Subject: [PATCH] curl: check data size before memcpy to local buffer.
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From bd45f35f686a5d7220100ffffa6b0cf7a227dcc0 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:41 +0100
|
||||
Subject: [PATCH] qcow2: Check header_length (CVE-2014-0144)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 8fbb3d7e1fe7f8bf3917d4ec4ae1b2e8380fc720 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:42 +0100
|
||||
Subject: [PATCH] qcow2: Check backing_file_offset (CVE-2014-0144)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 90b18dfb520bf5cb4b7acce6a79dad4ba1c91ab5 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:43 +0100
|
||||
Subject: [PATCH] qcow2: Check refcount table size (CVE-2014-0144)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 57e38333905d0c324fa5c9973f43251868c70f1f Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:44 +0100
|
||||
Subject: [PATCH] qcow2: Validate refcount table offset
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 4b60fa189e00b7756481aa5e6800bf788236b2b1 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:45 +0100
|
||||
Subject: [PATCH] qcow2: Validate snapshot table offset/size (CVE-2014-0144)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 24658f7b83bdd8a09cc622085d1259f26ee38b43 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:46 +0100
|
||||
Subject: [PATCH] qcow2: Validate active L1 table offset and size
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 2f4d7f07efcb0d6aa0d35d4f6fe10a830e2240ce Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:47 +0100
|
||||
Subject: [PATCH] qcow2: Fix backing file name length check
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 3fd6496d4e7869d9e6b1563e34af427187323987 Mon Sep 17 00:00:00 2001
|
||||
From: Hu Tao <hutao@cn.fujitsu.com>
|
||||
Date: Sun, 26 Jan 2014 11:12:38 +0800
|
||||
Subject: [PATCH] qcow2: fix offset overflow in qcow2_alloc_clusters_at()
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 78c951e761e8ce7b8503750bc0fc7ff4d70c4926 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Fri, 28 Mar 2014 18:06:31 +0100
|
||||
Subject: [PATCH] qcow2: Don't rely on free_cluster_index in
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 4e2c1ea4da59e66a567f50a1d66e4cc110e5e496 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:49 +0100
|
||||
Subject: [PATCH] qcow2: Avoid integer overflow in get_refcount (CVE-2014-0143)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From a8f7f240d8a02c7bebcdfd912001588c1422619f Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:50 +0100
|
||||
Subject: [PATCH] qcow2: Check new refcount table size on growth
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 26eabe580a600558dc45dd0fbe189c646349cf45 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:51 +0100
|
||||
Subject: [PATCH] qcow2: Fix types in qcow2_alloc_clusters and
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 02b066b43aad381c755645a2cfe8779e14f2a720 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:52 +0100
|
||||
Subject: [PATCH] qcow2: Protect against some integer overflows in bdrv_check
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 42997635f38e1ba75d045c5d9771784f16ec2a8a Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:53 +0100
|
||||
Subject: [PATCH] qcow2: Fix new L1 table size check (CVE-2014-0143)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From d857c200d3f13cb812495fec48b0fb4da1bbdfe4 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:54 +0100
|
||||
Subject: [PATCH] dmg: coding style and indentation cleanup
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 9498de028804a582535816f36abacf2f297ea592 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:55 +0100
|
||||
Subject: [PATCH] dmg: prevent out-of-bounds array access on terminator
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 7fe86d938be67ed6856c73985f4a1cf035a0399e Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:56 +0100
|
||||
Subject: [PATCH] dmg: drop broken bdrv_pread() loop
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 62298cd0354f1dfa8fe14a611064f8fc5ed43f0c Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:57 +0100
|
||||
Subject: [PATCH] dmg: use appropriate types when reading chunks
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From f2b6eff8aa04a6d5c6ac642e2991ddf7869bbde9 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:58 +0100
|
||||
Subject: [PATCH] dmg: sanitize chunk length and sectorcount (CVE-2014-0145)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 0d669d4204fd80a65142aadc5363de811634ed05 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:05:59 +0100
|
||||
Subject: [PATCH] dmg: use uint64_t consistently for sectors and lengths
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From e033dfba1292a0d345aaad7bc955ddc004d97c84 Mon Sep 17 00:00:00 2001
|
||||
From: Stefan Hajnoczi <stefanha@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:00 +0100
|
||||
Subject: [PATCH] dmg: prevent chunk buffer overflow (CVE-2014-0145)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From f880e4459cd8ab58817730983b0cdaa514844f59 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:02 +0100
|
||||
Subject: [PATCH] block: Limit request size (CVE-2014-0143)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 342d5cf06f79a6d1de9575e8fb99ae714b43371c Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:03 +0100
|
||||
Subject: [PATCH] qcow2: Fix copy_sectors() with VM state
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From e2871c69c209fe1df4478a82682d82c444c7136f Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:04 +0100
|
||||
Subject: [PATCH] qcow2: Fix NULL dereference in qcow2_open() error path
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 87e8497708f3aec3f065aed5096b4ac32b01f17e Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:05 +0100
|
||||
Subject: [PATCH] qcow2: Fix L1 allocation size in qcow2_snapshot_load_tmp()
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 9e4cc665c88e8dd6c1986c49ccdc66ce93e9571c Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:06 +0100
|
||||
Subject: [PATCH] qcow2: Check maximum L1 size in qcow2_snapshot_load_tmp()
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 51b8dca866a1b77a9803ee3b56e059f8e7795dd8 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:07 +0100
|
||||
Subject: [PATCH] qcow2: Limit snapshot table size
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 7b9628e6facd00f8ab8a042dd52dba377aceb080 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:08 +0100
|
||||
Subject: [PATCH] parallels: Fix catalog size integer overflow (CVE-2014-0143)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 09c235dc7edf8c360a92f7d004468ed2d380d5e5 Mon Sep 17 00:00:00 2001
|
||||
From: Kevin Wolf <kwolf@redhat.com>
|
||||
Date: Wed, 26 Mar 2014 13:06:09 +0100
|
||||
Subject: [PATCH] parallels: Sanity check for s->tracks (CVE-2014-0142)
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 9694b35ea442e1ac2bcb72abe4f7dcc5f0542028 Mon Sep 17 00:00:00 2001
|
||||
From: "Michael S. Tsirkin" <mst@redhat.com>
|
||||
Date: Fri, 11 Apr 2014 15:18:08 +0300
|
||||
Subject: [PATCH] virtio-net: fix guest-triggerable buffer overrun
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 08b35da4cbdbb1e1ab3aec27ab5ea7c9801a90e9 Mon Sep 17 00:00:00 2001
|
||||
From: Dmitry Fleytman <dmitry@daynix.com>
|
||||
Date: Fri, 4 Apr 2014 12:45:19 +0300
|
||||
Subject: [PATCH] vmxnet3: validate interrupt indices coming from guest
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From da02c5b666de7dc52a97d9d9c914763285318f50 Mon Sep 17 00:00:00 2001
|
||||
From: Dmitry Fleytman <dmitry@daynix.com>
|
||||
Date: Fri, 4 Apr 2014 12:45:20 +0300
|
||||
Subject: [PATCH] vmxnet3: validate queues configuration coming from guest
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From acea806434d8d17ec72fd0cc091fd78370ae53f7 Mon Sep 17 00:00:00 2001
|
||||
From: Dmitry Fleytman <dmitry@daynix.com>
|
||||
Date: Fri, 4 Apr 2014 12:45:21 +0300
|
||||
Subject: [PATCH] vmxnet3: validate interrupt indices read on migration
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 0b10529e68cce027735be048044a414379f27568 Mon Sep 17 00:00:00 2001
|
||||
From: Dmitry Fleytman <dmitry@daynix.com>
|
||||
Date: Fri, 4 Apr 2014 12:45:22 +0300
|
||||
Subject: [PATCH] vmxnet3: validate queues configuration read on migration
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 282af5229f9eb38a322034289648619c4c780fd0 Mon Sep 17 00:00:00 2001
|
||||
From: =?UTF-8?q?Beno=C3=AEt=20Canet?= <benoit.canet@irqsave.net>
|
||||
Date: Sat, 12 Apr 2014 22:59:50 +0200
|
||||
Subject: [PATCH] ide: Correct improper smart self test counter reset in ide
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 436055f9403c0134cdd333a9c3acef0c394d2102 Mon Sep 17 00:00:00 2001
|
||||
From: Peter Crosthwaite <peter.crosthwaite@xilinx.com>
|
||||
Date: Mon, 10 Feb 2014 22:49:35 -0800
|
||||
Subject: [PATCH] char/serial: Fix emptyness check
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From dde12083417266a1a723c9a491c26258f837963f Mon Sep 17 00:00:00 2001
|
||||
From: Don Slutz <dslutz@verizon.com>
|
||||
Date: Tue, 18 Mar 2014 12:29:34 -0400
|
||||
Subject: [PATCH] char/serial: Fix emptyness handling
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ccf50e25b0c111f58be8c2084220410dd2a7e22a Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Fri, 20 Sep 2013 20:35:06 +0100
|
||||
Subject: [PATCH] vmstate: Add uint32 2D-array support
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From b7ad87a31916871d523a15981c658a45a6e44b40 Mon Sep 17 00:00:00 2001
|
||||
From: =?UTF-8?q?Andreas=20F=C3=A4rber?= <afaerber@suse.de>
|
||||
Date: Tue, 23 Jul 2013 03:37:49 +0200
|
||||
Subject: [PATCH] arm_gic: Extract headers hw/intc/arm_gic{,_common}.h
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From f81cfc1c2ec7e20c86656784b28f27b46868f71e Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Fri, 20 Dec 2013 22:09:32 -0800
|
||||
Subject: [PATCH] arm_gic: Rename GIC_X_TRIGGER to GIC_X_EDGE_TRIGGER
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 517ca103f039a560487d416359ef4c9338cbd833 Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Fri, 20 Dec 2013 22:09:33 -0800
|
||||
Subject: [PATCH] hw: arm_gic: Introduce gic_set_priority function
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 20b9341d38dc1882aef9fea3dcd3f4981c1c61b4 Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Fri, 31 Jan 2014 14:47:38 +0000
|
||||
Subject: [PATCH] arm_gic: Introduce define for GIC_NR_SGIS
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 0b838da99dfef17beaa843219d59c0646d857b2f Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Fri, 31 Jan 2014 14:47:38 +0000
|
||||
Subject: [PATCH] arm_gic: Fix GICD_ICPENDR and GICD_ISPENDR writes
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 46d5faeb5f937680b60109ba31a80e2d9065c800 Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Mon, 18 Nov 2013 20:32:00 -0800
|
||||
Subject: [PATCH] arm_gic: Fix GIC pending behavior
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ab5509221ef27a2a394de5df48fa2fc674aa60e2 Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Mon, 18 Nov 2013 20:32:00 -0800
|
||||
Subject: [PATCH] arm_gic: Keep track of SGI sources
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From ca14b4d8ba787af99a77322f16636c9b11d053fe Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Thu, 12 Sep 2013 22:18:20 -0700
|
||||
Subject: [PATCH] arm_gic: Support setting/getting binary point reg
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 7700d225b357c66a6949834f069ea3949890119b Mon Sep 17 00:00:00 2001
|
||||
From: Christoffer Dall <christoffer.dall@linaro.org>
|
||||
Date: Mon, 18 Nov 2013 19:26:33 -0800
|
||||
Subject: [PATCH] arm_gic: Add GICC_APRn state to the GICState
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From beadb779fa7edda184961c62cd18bff7848b8d27 Mon Sep 17 00:00:00 2001
|
||||
From: Peter Maydell <peter.maydell@linaro.org>
|
||||
Date: Thu, 20 Feb 2014 10:35:48 +0000
|
||||
Subject: [PATCH] hw/intc/arm_gic: Fix NVIC assertion failure
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From e8e3f1c084317c8bb184b75c19f9cb5473b9b7c9 Mon Sep 17 00:00:00 2001
|
||||
From: "Michael S. Tsirkin" <mst@redhat.com>
|
||||
Date: Thu, 3 Apr 2014 19:50:31 +0300
|
||||
Subject: [PATCH] vmstate: add VMS_MUST_EXIST
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 56a72d13f8dc547818c966fcf4d01819c8124b33 Mon Sep 17 00:00:00 2001
|
||||
From: "Michael S. Tsirkin" <mst@redhat.com>
|
||||
Date: Thu, 3 Apr 2014 19:50:35 +0300
|
||||
Subject: [PATCH] vmstate: add VMSTATE_VALIDATE
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 0e8bff015d09d58e1b209368d9425a3293e9bc9e Mon Sep 17 00:00:00 2001
|
||||
From: "Michael S. Tsirkin" <mst@redhat.com>
|
||||
Date: Thu, 3 Apr 2014 19:50:39 +0300
|
||||
Subject: [PATCH] virtio-net: fix buffer overflow on invalid state load
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From 1f4b223bd7c6abe50dc0d3045365a6462cfb8a5e Mon Sep 17 00:00:00 2001
|
||||
From: "Michael S. Tsirkin" <mst@redhat.com>
|
||||
Date: Thu, 3 Apr 2014 19:50:56 +0300
|
||||
Subject: [PATCH] virtio-net: out-of-bounds buffer write on invalid state load
|
||||
|
||||
@ -1,4 +1,3 @@
|
||||
From aa7a505a6ddfc7ae215adcbf49f9e135b8471643 Mon Sep 17 00:00:00 2001
|
||||
From: "Michael S. Tsirkin" <mst@redhat.com>
|
||||
Date: Thu, 3 Apr 2014 19:51:14 +0300
|
||||
Subject: [PATCH] virtio: out-of-bounds buffer write on invalid state load
|
||||
|
||||
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue
Block a user