summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2014-04-01Merge remote-tracking branch 'remotes/stefanha/tags/tracing-pull-request' int...Peter Maydell
2014-04-01trace: add workaround for SystemTap PR13296Frank Ch. Eigler
2014-04-01Merge remote-tracking branch 'remotes/stefanha/tags/block-pull-request' into ...Peter Maydell
2014-04-01Merge remote-tracking branch 'remotes/kraxel/tags/pull-input-7' into stagingPeter Maydell
2014-04-01qcow2: link all L2 meta updates in preallocate()Stefan Hajnoczi
2014-04-01parallels: Sanity check for s->tracks (CVE-2014-0142)Kevin Wolf
2014-04-01parallels: Fix catalog size integer overflow (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Limit snapshot table sizeKevin Wolf
2014-04-01qcow2: Check maximum L1 size in qcow2_snapshot_load_tmp() (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Fix L1 allocation size in qcow2_snapshot_load_tmp() (CVE-2014-0145)Kevin Wolf
2014-04-01qcow2: Fix NULL dereference in qcow2_open() error path (CVE-2014-0146)Kevin Wolf
2014-04-01qcow2: Fix copy_sectors() with VM stateKevin Wolf
2014-04-01block: Limit request size (CVE-2014-0143)Kevin Wolf
2014-04-01block: vdi bounds check qemu-io testsJeff Cody
2014-04-01dmg: prevent chunk buffer overflow (CVE-2014-0145)Stefan Hajnoczi
2014-04-01dmg: use uint64_t consistently for sectors and lengthsStefan Hajnoczi
2014-04-01dmg: sanitize chunk length and sectorcount (CVE-2014-0145)Stefan Hajnoczi
2014-04-01dmg: use appropriate types when reading chunksStefan Hajnoczi
2014-04-01dmg: drop broken bdrv_pread() loopStefan Hajnoczi
2014-04-01dmg: prevent out-of-bounds array access on terminatorStefan Hajnoczi
2014-04-01dmg: coding style and indentation cleanupStefan Hajnoczi
2014-04-01qcow2: Fix new L1 table size check (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Protect against some integer overflows in bdrv_checkKevin Wolf
2014-04-01qcow2: Fix types in qcow2_alloc_clusters and alloc_clusters_norefKevin Wolf
2014-04-01qcow2: Check new refcount table size on growthKevin Wolf
2014-04-01qcow2: Avoid integer overflow in get_refcount (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Don't rely on free_cluster_index in alloc_refcount_block() (CVE-2014-0...Kevin Wolf
2014-04-01qcow2: Fix backing file name length checkKevin Wolf
2014-04-01qcow2: Validate active L1 table offset and size (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Validate snapshot table offset/size (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Validate refcount table offsetKevin Wolf
2014-04-01qcow2: Check refcount table size (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Check backing_file_offset (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Check header_length (CVE-2014-0144)Kevin Wolf
2014-04-01curl: check data size before memcpy to local buffer. (CVE-2014-0144)Fam Zheng
2014-04-01vhdx: Bounds checking for block_size and logical_sector_size (CVE-2014-0148)Jeff Cody
2014-04-01vdi: add bounds checks for blocks_in_image and disk_size header fields (CVE-2...Jeff Cody
2014-04-01vpc: Validate block size (CVE-2014-0142)Kevin Wolf
2014-04-01vpc/vhd: add bounds check for max_table_entries and block_size (CVE-2014-0144)Jeff Cody
2014-04-01bochs: Fix bitmap offset calculationKevin Wolf
2014-04-01bochs: Check extent_size header field (CVE-2014-0142)Kevin Wolf
2014-04-01bochs: Check catalog_size header field (CVE-2014-0143)Kevin Wolf
2014-04-01bochs: Use unsigned variables for offsets and sizes (CVE-2014-0147)Kevin Wolf
2014-04-01bochs: Unify header structs and make them QEMU_PACKEDKevin Wolf
2014-04-01qemu-iotests: Support for bochs formatKevin Wolf
2014-04-01block/cloop: fix offsets[] size off-by-oneStefan Hajnoczi
2014-04-01block/cloop: refuse images with bogus offsets (CVE-2014-0144)Stefan Hajnoczi
2014-04-01block/cloop: refuse images with huge offsets arrays (CVE-2014-0144)Stefan Hajnoczi
2014-04-01block/cloop: prevent offsets_size integer overflow (CVE-2014-0143)Stefan Hajnoczi
2014-04-01block/cloop: validate block_size header field (CVE-2014-0144)Stefan Hajnoczi
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-16 19:01:51 +0000