Re: [Qemu-devel] [PATCH] block: prevent snapshot mode $TMPDIR symlink at

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH] block: prevent snapshot mode $TMPDIR symlink at

From:	Stefan Hajnoczi
Subject:	Re: [Qemu-devel] [PATCH] block: prevent snapshot mode $TMPDIR symlink attack
Date:	Mon, 28 May 2012 13:21:43 +0100

On Mon, May 28, 2012 at 8:27 AM, Jim Meyering <address@hidden> wrote:
> diff --git a/block/vvfat.c b/block/vvfat.c
> index 2dc9d50..0fd3367 100644
> --- a/block/vvfat.c
> +++ b/block/vvfat.c
> @@ -2808,7 +2808,12 @@ static int enable_write_target(BDRVVVFATState *s)
>     array_init(&(s->commits), sizeof(commit_t));
>
>     s->qcow_filename = g_malloc(1024);
> -    get_tmp_filename(s->qcow_filename, 1024);
> +    ret = get_tmp_filename(s->qcow_filename, 1024);
> +    if (ret < 0) {
> +        g_free(s->qcow_filename);
> +        s->qcow_filename = NULL;
> +        return ret;
> +    }

It appears that s->used_clusters gets leaked in vvfat.  This can be
addressed in a separate patch since other codepaths also leak it.

Reviewed-by: Stefan Hajnoczi <address@hidden>

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH] block: prevent snapshot mode $TMPDIR symlink attack, Jim Meyering, 2012/05/28
- Re: [Qemu-devel] [PATCH] block: prevent snapshot mode $TMPDIR symlink attack, Stefan Hajnoczi <=

Prev by Date: Re: [Qemu-devel] [PATCH 4/4] ISCSI: If the device we open is a SMC device, then force the use of sg. We dont have any medium changer emulation so only passthrough via real sg or scsi-generic via iscsi would work anyway.
Next by Date: Re: [Qemu-devel] [PATCH for-1.1] virtio-blk: Fix unused variables in virtio_blk_handle_scsi()
Previous by thread: [Qemu-devel] [PATCH] block: prevent snapshot mode $TMPDIR symlink attack
Next by thread: Re: [Qemu-devel] [PATCH v2] net: add the support for -netdev socket, listen
Index(es):
- Date
- Thread