]> git.ipfire.org Git - thirdparty/libvirt.git/commit
projects / thirdparty / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ff60928) | patch
qemu: avoid denial of service reading from QEMU monitor (CVE-2018-5748) CVE-2018-5748
authorDaniel P. Berrange <berrange@redhat.com>
Tue, 16 Jan 2018 17:00:11 +0000 (17:00 +0000)
committerDaniel P. Berrange <berrange@redhat.com>
Thu, 18 Jan 2018 09:04:27 +0000 (09:04 +0000)
commitbc251ea91bcfddd2622fce6bce701a438b2e7276
treebbf81b725433903f352feebb08cf6e0977bb17c1tree
parentff609286a771443877b9d95f136e465e378d96d2commit | diff
qemu: avoid denial of service reading from QEMU monitor (CVE-2018-5748)

We read from QEMU until seeing a \r\n pair to indicate a completed reply
or event. To avoid memory denial-of-service though, we must have a size
limit on amount of data we buffer. 10 MB is large enough that it ought
to cope with normal QEMU replies, and small enough that we're not
consuming unreasonable mem.

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
src/qemu/qemu_monitor.c diff | blob | blame | history
Mirror of https://github.com/libvirt/libvirt.git