]> xenbits.xensource.com Git - people/liuw/libxenctrl-split/libvirt.git/commit
projects / people / liuw / libxenctrl-split / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 03c3c0c) | patch
CVE-2015-0236: qemu: Check ACLs when dumping security info from snapshots
authorPeter Krempa <pkrempa@redhat.com>
Tue, 20 Jan 2015 16:01:01 +0000 (17:01 +0100)
committerPeter Krempa <pkrempa@redhat.com>
Thu, 22 Jan 2015 13:32:54 +0000 (14:32 +0100)
commitb347c0c2a321ec5c20aae214927949832a288c5a
tree31430db6c19174b41af83a1c0aa012f7c0f9394btree
parent03c3c0c874c84dfa51ef17556062b095c6e1c0a3commit | diff
CVE-2015-0236: qemu: Check ACLs when dumping security info from snapshots

The ACL check didn't check the VIR_DOMAIN_XML_SECURE flag and the
appropriate permission for it. Found via code inspection while fixing
permissions for save images.
src/qemu/qemu_driver.c diff | blob | blame | history
src/remote/remote_protocol.x diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.