git.ipfire.org Git - thirdparty/qemu.git/commit

Merge remote-tracking branch 'gkurz/tags/security-fix-for-2.10' into staging

Fix for CVE-2017-7493.

# gpg: Signature made Mon 15 May 2017 07:48:20 PM BST
# gpg:                using DSA key 0x02FC3AEB0101DBC2
# gpg: Good signature from "Greg Kurz <groug@kaod.org>"
# gpg:                 aka "Greg Kurz <groug@free.fr>"
# gpg:                 aka "Greg Kurz <gkurz@fr.ibm.com>"
# gpg:                 aka "Greg Kurz <gkurz@linux.vnet.ibm.com>"
# gpg:                 aka "Gregory Kurz (Groug) <groug@free.fr>"
# gpg:                 aka "Gregory Kurz (Cimai Technology) <gkurz@cimai.com>"
# gpg:                 aka "Gregory Kurz (Meiosys Technology) <gkurz@meiosys.com>"
# gpg: WARNING: This key is not certified with a trusted signature!
# gpg:          There is no indication that the signature belongs to the owner.
# Primary key fingerprint: 2BD4 3B44 535E C0A7 9894  DBA2 02FC 3AEB 0101 DBC2

* gkurz/tags/security-fix-for-2.10:
  9pfs: local: forbid client access to metadata (CVE-2017-7493)

Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>

author	Stefan Hajnoczi <stefanha@redhat.com>
	Tue, 16 May 2017 14:26:24 +0000 (15:26 +0100)
committer	Stefan Hajnoczi <stefanha@redhat.com>
	Tue, 16 May 2017 14:26:24 +0000 (15:26 +0100)
commit	96cd59981805b2d0addb86967d35f60d660ec9dc
tree	88b2feeec1df87002cd9681ada7a166c0664ad02	tree \| snapshot
parent	6a8d8349864fb01fdd5a7d1c2e7ca0e5ad24f3d0	commit \| diff
parent	7a95434e0ca8a037fd8aa1a2e2461f92585eb77b	commit \| diff