f3a92ca
Block/image format validation CVE-2014-0142 - 2014-0148 (bz #1078201, bz #1086710, bz #1079140, bz #1086724, bz #1079240, bz #1086735, bz #1078885, bz #1086720, bz #1078232, bz #1086713, bz #1078848, bz #1086717, bz #1078212, bz #1086712)
Authored and Committed by 
crobinso
10 years ago
0117-block-cloop-validate-block_size-header-field-CVE-201.patch
file added
+66
0118-block-cloop-prevent-offsets_size-integer-overflow-CV.patch
file added
+63
0119-block-cloop-refuse-images-with-huge-offsets-arrays-C.patch
file added
+47
0120-block-cloop-refuse-images-with-bogus-offsets-CVE-201.patch
file added
+71
0121-block-cloop-fix-offsets-size-off-by-one.patch
file added
+75
0122-bochs-Unify-header-structs-and-make-them-QEMU_PACKED.patch
file added
+134
0123-bochs-Use-unsigned-variables-for-offsets-and-sizes-C.patch
file added
+65
0124-bochs-Check-catalog_size-header-field-CVE-2014-0143.patch
file added
+54
0125-bochs-Check-extent_size-header-field-CVE-2014-0142.patch
file added
+40
0126-bochs-Fix-bitmap-offset-calculation.patch
file added
+32
0127-vpc-vhd-add-bounds-check-for-max_table_entries-and-b.patch
file added
+97
0128-vpc-Validate-block-size-CVE-2014-0142.patch
file added
+34
0129-vdi-add-bounds-checks-for-blocks_in_image-and-disk_s.patch
file added
+111
0130-vhdx-Bounds-checking-for-block_size-and-logical_sect.patch
file added
+67
0131-curl-check-data-size-before-memcpy-to-local-buffer.-.patch
file added
+37
0132-qcow2-Check-header_length-CVE-2014-0144.patch
file added
+84
0133-qcow2-Check-backing_file_offset-CVE-2014-0144.patch
file added
+39
0134-qcow2-Check-refcount-table-size-CVE-2014-0144.patch
file added
+62
0135-qcow2-Validate-refcount-table-offset.patch
file added
+75
0136-qcow2-Validate-snapshot-table-offset-size-CVE-2014-0.patch
file added
+149
0137-qcow2-Validate-active-L1-table-offset-and-size-CVE-2.patch
file added
+55
0138-qcow2-Fix-backing-file-name-length-check.patch
file added
+51
0139-qcow2-fix-offset-overflow-in-qcow2_alloc_clusters_at.patch
file added
+47
0140-qcow2-Don-t-rely-on-free_cluster_index-in-alloc_refc.patch
file added
+216
0141-qcow2-Avoid-integer-overflow-in-get_refcount-CVE-201.patch
file added
+29
0142-qcow2-Check-new-refcount-table-size-on-growth.patch
file added
+78
0143-qcow2-Fix-types-in-qcow2_alloc_clusters-and-alloc_cl.patch
file added
+86
0144-qcow2-Protect-against-some-integer-overflows-in-bdrv.patch
file added
+62
0145-qcow2-Fix-new-L1-table-size-check-CVE-2014-0143.patch
file added
+29
0146-dmg-coding-style-and-indentation-cleanup.patch
file added
+322
0147-dmg-prevent-out-of-bounds-array-access-on-terminator.patch
file added
+34
0148-dmg-drop-broken-bdrv_pread-loop.patch
file added
+57
0149-dmg-use-appropriate-types-when-reading-chunks.patch
file added
+42
0150-dmg-sanitize-chunk-length-and-sectorcount-CVE-2014-0.patch
file added
+68
0151-dmg-use-uint64_t-consistently-for-sectors-and-length.patch
file added
+49
0152-dmg-prevent-chunk-buffer-overflow-CVE-2014-0145.patch
file added
+95
0153-block-Limit-request-size-CVE-2014-0143.patch
file added
+33
0154-qcow2-Fix-copy_sectors-with-VM-state.patch
file added
+118
0155-qcow2-Fix-NULL-dereference-in-qcow2_open-error-path-.patch
file added
+49
0156-qcow2-Fix-L1-allocation-size-in-qcow2_snapshot_load_.patch
file added
+90
0157-qcow2-Check-maximum-L1-size-in-qcow2_snapshot_load_t.patch
file added
+68
0158-qcow2-Limit-snapshot-table-size.patch
file added
+82
0159-parallels-Fix-catalog-size-integer-overflow-CVE-2014.patch
file added
+53
0160-parallels-Sanity-check-for-s-tracks-CVE-2014-0142.patch
file added
+48
0201-virtio-net-fix-guest-triggerable-buffer-overrun.patch
file added
+51
0202-vmxnet3-validate-interrupt-indices-coming-from-guest.patch
file added
+96
0203-vmxnet3-validate-queues-configuration-coming-from-gu.patch
file added
+55
0204-vmxnet3-validate-interrupt-indices-read-on-migration.patch
file added
+31
0205-vmxnet3-validate-queues-configuration-read-on-migrat.patch
file added
+30
0206-ide-Correct-improper-smart-self-test-counter-reset-i.patch
file added
+38
qemu.spec
file modified
+135
-1