Re: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block devi

From:	Eduardo Habkost
Subject:	Re: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block device address range checking
Date:	Thu, 19 Feb 2009 18:40:48 -0300
User-agent:	Sup/git

Excerpts from Eduardo Pereira Habkost's message of Qui Fev 19 18:19:36 -0300 
2009:
> From: Aurelien Jarno <aurel32>

Oops. The line above wasn't supposed to be there. Author info on my git
repository got messed when I've squashed two patches.

> 
> This is based on an old patch commited by Aurelien Jarno whose commit
> message was:
> 
>   Fix CVE-2008-0928 - insufficient block device address range checking
> 
>   Qemu 0.9.1 and earlier does not perform range checks for block device
>   read or write requests, which allows guest host users with root
>   privileges to access arbitrary memory and escape the virtual machine.
> 
> In addition to the changes done by the previous patch, this patch changes
> total_sectors to total_bytes, so that the range checking works for
> backing devices that are not sector-based (for example, when block-qcow
> is reading the backing file). This was done to avoid bugs such as:
> 
> https://bugzilla.redhat.com/show_bug.cgi?id=485148
> 
> Signed-off-by: Eduardo Habkost <address@hidden>
-- 
Eduardo

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH 0/4] CVE-2008-0928 security fix, Eduardo Habkost, 2009/02/19
- [Qemu-devel] [PATCH 3/4] Move SECTOR_BITS/SECTOR_SIZE to block.h, Eduardo Habkost, 2009/02/19
- [Qemu-devel] [PATCH 1/4] vmdk: check for negative sector nums also, Eduardo Habkost, 2009/02/19
  - Re: [Qemu-devel] [PATCH 1/4] vmdk: check for negative sector nums also, Stefan Weil, 2009/02/19
    - Re: [Qemu-devel] [PATCH 1/4] vmdk: check for negative sector nums also, Eduardo Habkost, 2009/02/19
- [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block device address range checking, Eduardo Habkost, 2009/02/19
  - Re: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block device address range checking, Eduardo Habkost <=
  - Re: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block device address range checking, Aurelien Jarno, 2009/02/19
- [Qemu-devel] [PATCH 2/4] hw/sd.c: remove ununsed SECTOR_SIZE define, Eduardo Habkost, 2009/02/19

Prev by Date: [Qemu-devel] [PATCH 0/4] CVE-2008-0928 security fix
Next by Date: Re: [Qemu-devel] [PATCH 1/4] vmdk: check for negative sector nums also
Previous by thread: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block device address range checking
Next by thread: Re: [Qemu-devel] [PATCH 4/4] Fix CVE-2008-0928 - insufficient block device address range checking
Index(es):
- Date
- Thread