Fix CVE-2008-0928 - insufficient block device address range checking

Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine. git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@4037 c046a42c-6fe2-441c-8c8c-71466251a162
author: aurel32 <aurel32@c046a42c-6fe2-441c-8c8c-71466251a162> 2008-03-11 17:17:59 +0000
committer: aurel32 <aurel32@c046a42c-6fe2-441c-8c8c-71466251a162> 2008-03-11 17:17:59 +0000
commit: 902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe (patch)
tree: 88c3355a4eaf8533669c87a6dab7c8a4afcd8557 /block.h
parent: b94ed5772eb31e8fad4b823351e8152839bf722a (diff)
download: qemu-902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe.zip
qemu-902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe.tar.gz
qemu-902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe.tar.bz2
1 files changed, 1 insertions, 0 deletions
diff --git a/block.h b/block.h
index b730505..0673a63 100644
--- a/block.h
+++ b/block.h
@@ -45,6 +45,7 @@ typedef struct QEMUSnapshotInfo {
                                      it (default for
                                      bdrv_file_open()) */
 #define BDRV_O_DIRECT      0x0020
+#define BDRV_O_AUTOGROW    0x0040 /* Allow backing file to extend when writing past end of file */
 
 #ifndef QEMU_IMG
 void bdrv_info(void);
author	aurel32 <aurel32@c046a42c-6fe2-441c-8c8c-71466251a162>	2008-03-11 17:17:59 +0000
committer	aurel32 <aurel32@c046a42c-6fe2-441c-8c8c-71466251a162>	2008-03-11 17:17:59 +0000
commit	902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe (patch)
tree	88c3355a4eaf8533669c87a6dab7c8a4afcd8557 /block.h
parent	b94ed5772eb31e8fad4b823351e8152839bf722a (diff)
download	qemu-902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe.zip qemu-902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe.tar.gz qemu-902b27d0b8d5bfa840eaf389d7cbcc28b57e3fbe.tar.bz2