xemu-project/xemu
1
0
Fork 0
mirror of https://github.com/xemu-project/xemu.git synced 2025-03-01 00:46:57 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
xemu/hw
History
Greg Kurz b003fc0d8a 9pfs: fix vulnerability in openat_dir() and local_unlinkat_common() 
We should pass O_NOFOLLOW otherwise openat() will follow symlinks and make
QEMU vulnerable.

While here, we also fix local_unlinkat_common() to use openat_dir() for
the same reasons (it was a leftover in the original patchset actually).

This fixes CVE-2016-9602.

Signed-off-by: Greg Kurz <groug@kaod.org>
Reviewed-by: Daniel P. Berrange <berrange@redhat.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
2017-03-06 17:34:01 +01:00
..
9pfs
9pfs: fix vulnerability in openat_dir() and local_unlinkat_common()
2017-03-06 17:34:01 +01:00
acpi
virtio, pc: fixes, features
2017-03-03 10:09:03 +00:00
adc
STM32F2xx: Add the ADC device
2016-10-04 13:28:07 +01:00
alpha
hw: Default -drive to if=ide explicitly where it works
2017-02-21 13:10:53 +01:00
arm
bcm2835: add sdhost and gpio controllers
2017-02-28 17:10:00 +00:00
audio
es1370: wire up reset via DeviceClass
2017-01-11 09:19:03 +01:00
block
hw/block: Introduce share-rw qdev property
2017-02-28 20:40:36 +01:00
bt
chardev: qom-ify
2017-01-27 18:08:00 +01:00
char
hw/char/mcf_uart: QOMify the ColdFire UART
2017-02-16 14:06:56 +01:00
core
Migration pull
2017-03-02 17:39:12 +00:00
cpu
Introduce DEVICE_CATEGORY_CPU for CPU devices
2017-01-27 18:07:31 +01:00
cris
cris: Fix broken header guard in hw/cris/boot.h
2016-07-12 16:20:46 +02:00
display
trivial patches for 2017-02-28
2017-02-28 16:22:41 +00:00
dma
migration: consolidate VMStateField.start
2017-02-13 17:27:13 +00:00
gpio
bcm2835_gpio: add bcm2835 gpio controller
2017-02-28 17:10:00 +00:00
i2c
arm: Uniquely name imx25 I2C buses.
2017-01-20 11:15:06 +00:00
i386
virtio, pc: fixes, features
2017-03-03 10:09:03 +00:00
ide
hw/block: Request permissions
2017-02-28 20:40:36 +01:00
input
-----BEGIN PGP SIGNATURE-----
2017-02-02 16:08:28 +00:00
intc
ppc/xics: register reset handlers for the ICP and ICS objects
2017-03-06 10:07:38 +11:00
ipack
ipack: Update e-mail address
2016-05-18 15:04:27 +03:00
ipmi
migration: consolidate VMStateField.start
2017-02-13 17:27:13 +00:00
isa
Allow ISA bus to be configured out
2017-02-06 12:33:21 +11:00
lm32
char: rename CharDriverState Chardev
2017-01-27 18:07:59 +01:00
m68k
hw/m68k: QOMify the ColdFire interrupt controller
2017-02-18 22:23:31 +01:00
mem
pc: memhp: enable nvdimm device hotplug
2016-11-01 19:21:09 +02:00
microblaze
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
mips
hw/mips: MIPS Boston board support
2017-02-24 10:37:21 +00:00
misc
hw/arm/exynos: Fix Linux kernel division by zero for PLLs
2017-02-28 12:08:20 +00:00
moxie
hw: explicitly include qemu-common.h and cpu.h
2016-03-22 22:20:17 +01:00
net
cadence_gem: Remove unused parameter debug message
2017-02-28 09:03:38 +03:00
nios2
nios2: Add Altera 10M50 GHRD emulation
2017-01-24 13:10:35 -08:00
nvram
hw/block: Request permissions
2017-02-28 20:40:36 +01:00
openrisc
target/openrisc: Rename the cpu from or32 to or1k
2017-02-14 08:14:58 +11:00
pci
spapr/pci: populate PCI DT in reverse order
2017-03-01 11:23:39 +11:00
pci-bridge
ppc patch queue 2017-02-02
2017-02-02 18:48:06 +00:00
pci-host
ppc patch queue for 2017-02-22
2017-02-24 10:13:57 +00:00
pcmcia
hw: Clean up includes
2016-01-29 15:07:25 +00:00
ppc
ppc patch queue for 2017-03-06
2017-03-06 13:06:30 +00:00
s390x
s390x/ipl: Load network boot image
2017-02-28 12:04:48 +01:00
scsi
hw/block: Request permissions
2017-02-28 20:40:36 +01:00
sd
Block layer patches
2017-03-01 23:09:46 +00:00
sh4
hw: Default -drive to if=ide explicitly where it works
2017-02-21 13:10:53 +01:00
smbios
stubs: move smbios stubs to hw/smbios
2017-01-16 17:52:35 +01:00
sparc
hw: Drop superfluous special checks for orphaned -drive
2017-02-21 13:17:45 +01:00
sparc64
Pull request for Niagara patches 2017 02 26
2017-02-26 22:40:23 +00:00
ssi
aspeed/smc: use a modulo to check segment limits
2017-02-10 17:40:30 +00:00
timer
armv7m: Split systick out from NVIC
2017-02-28 16:18:49 +00:00
tpm
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
tricore
tricore: remove useless cast
2016-09-15 15:32:22 +03:00
unicore32
clean-up: removed duplicate #includes
2016-10-28 18:17:24 +03:00
usb
Migration pull
2017-03-02 17:39:12 +00:00
vfio
vfio/pci-quirks.c: Disable stolen memory for igd VFIO
2017-02-22 13:19:59 -07:00
virtio
virtio: unbreak virtio-pci with IOMMU after caching ring translations
2017-03-02 07:14:28 +02:00
watchdog
wdt: Add Aspeed watchdog device model
2017-02-07 18:29:59 +00:00
xen
Xen 2017/02/02
2017-02-03 12:31:40 +00:00
xenpv
xenpv: Fix qemu_uuid compiling error
2016-09-29 11:43:17 +08:00
xtensa
target/xtensa: refactor CCOUNT/CCOMPARE
2017-01-15 13:01:55 -08:00
Makefile.objs
acpi: filter based on CONFIG_ACPI_X86 rather than TARGET
2017-01-16 17:52:35 +01:00