Re: [Qemu-stable] [Qemu-devel] [PATCH 00/23] qemu state loading issues

qemu-stable

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-stable] [Qemu-devel] [PATCH 00/23] qemu state loading issues

From:	Peter Maydell
Subject:	Re: [Qemu-stable] [Qemu-devel] [PATCH 00/23] qemu state loading issues
Date:	Tue, 3 Dec 2013 18:24:24 +0000

On 3 December 2013 16:28, Michael S. Tsirkin <address@hidden> wrote:
>   For example:
>
>   https://bugzilla.redhat.com/show_bug.cgi?id=588133#c8
>   https://bugzilla.redhat.com/show_bug.cgi?id=588133#c9

I get "not authorized" errors on both of those.

> This patchset is the result of that audit: it addresses this set of
> security issues by adding input validation and failing migration on
> invalid input.

I notice that some but not all of these patches have CVE numbers
in the commit messages -- what's the distinction that meant some
of them get CVEs and some don't?

thanks
-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-stable] [PATCH 19/23] tsc210x: fix buffer overrun on invalid state load, (continued)
- [Qemu-stable] [PATCH 19/23] tsc210x: fix buffer overrun on invalid state load, Michael S. Tsirkin, 2013/12/03
- [Qemu-stable] [PATCH 11/23] stellaris_enet: avoid buffer overrun on incoming migration (part 2), Michael S. Tsirkin, 2013/12/03
  - Re: [Qemu-stable] [PATCH 11/23] stellaris_enet: avoid buffer overrun on incoming migration (part 2), Peter Maydell, 2013/12/03
  - Re: [Qemu-stable] [PATCH 11/23] stellaris_enet: avoid buffer overrun on incoming migration (part 2), Peter Maydell, 2013/12/03
- [Qemu-stable] [PATCH 21/23] usb: sanity check setup_index+setup_len in post_load, Michael S. Tsirkin, 2013/12/03
- [Qemu-stable] [PATCH 22/23] virtio-scsi: fix buffer overrun on invalid state load, Michael S. Tsirkin, 2013/12/03
  - Re: [Qemu-stable] [Qemu-devel] [PATCH 22/23] virtio-scsi: fix buffer overrun on invalid state load, Peter Maydell, 2013/12/03
    - Re: [Qemu-stable] [PATCH 22/23] virtio-scsi: fix buffer overrun on invalid state load, Paolo Bonzini, 2013/12/03
- [Qemu-stable] [PATCH 23/23] savevm: fix potential segfault on invalid state, Michael S. Tsirkin, 2013/12/03
- [Qemu-stable] [PATCH 04/23] virtio: out-of-bounds buffer write on invalid state load, Michael S. Tsirkin, 2013/12/03
- Re: [Qemu-stable] [Qemu-devel] [PATCH 00/23] qemu state loading issues, Peter Maydell <=
  - Re: [Qemu-stable] [Qemu-devel] [PATCH 00/23] qemu state loading issues, Michael S. Tsirkin, 2013/12/04

Prev by Date: Re: [Qemu-stable] [Qemu-devel] [PATCH 22/23] virtio-scsi: fix buffer overrun on invalid state load
Next by Date: Re: [Qemu-stable] [Qemu-devel] [PATCH 07/23] hw/pci/pcie_aer.c: fix buffer overruns on invalid state load
Previous by thread: [Qemu-stable] [PATCH 04/23] virtio: out-of-bounds buffer write on invalid state load
Next by thread: Re: [Qemu-stable] [Qemu-devel] [PATCH 00/23] qemu state loading issues
Index(es):
- Date
- Thread