aboutsummaryrefslogtreecommitdiff
AgeCommit message (Expand)AuthorFilesLines
2014-04-01block: Limit request size (CVE-2014-0143)Kevin Wolf1-0/+4
2014-04-01block: vdi bounds check qemu-io testsJeff Cody3-0/+138
2014-04-01dmg: prevent chunk buffer overflow (CVE-2014-0145)Stefan Hajnoczi1-6/+33
2014-04-01dmg: use uint64_t consistently for sectors and lengthsStefan Hajnoczi1-3/+3
2014-04-01dmg: sanitize chunk length and sectorcount (CVE-2014-0145)Stefan Hajnoczi1-0/+24
2014-04-01dmg: use appropriate types when reading chunksStefan Hajnoczi1-1/+2
2014-04-01dmg: drop broken bdrv_pread() loopStefan Hajnoczi1-13/+2
2014-04-01dmg: prevent out-of-bounds array access on terminatorStefan Hajnoczi1-1/+1
2014-04-01dmg: coding style and indentation cleanupStefan Hajnoczi1-104/+120
2014-04-01qcow2: Fix new L1 table size check (CVE-2014-0143)Kevin Wolf1-1/+1
2014-04-01qcow2: Protect against some integer overflows in bdrv_checkKevin Wolf1-9/+9
2014-04-01qcow2: Fix types in qcow2_alloc_clusters and alloc_clusters_norefKevin Wolf2-8/+9
2014-04-01qcow2: Check new refcount table size on growthKevin Wolf3-3/+14
2014-04-01qcow2: Avoid integer overflow in get_refcount (CVE-2014-0143)Kevin Wolf1-1/+1
2014-04-01qcow2: Don't rely on free_cluster_index in alloc_refcount_block() (CVE-2014-0...Kevin Wolf6-44/+65
2014-04-01qcow2: Fix backing file name length checkKevin Wolf3-3/+19
2014-04-01qcow2: Validate active L1 table offset and size (CVE-2014-0144)Kevin Wolf3-0/+45
2014-04-01qcow2: Validate snapshot table offset/size (CVE-2014-0144)Kevin Wolf5-26/+91
2014-04-01qcow2: Validate refcount table offsetKevin Wolf3-0/+56
2014-04-01qcow2: Check refcount table size (CVE-2014-0144)Kevin Wolf4-1/+29
2014-04-01qcow2: Check backing_file_offset (CVE-2014-0144)Kevin Wolf3-0/+25
2014-04-01qcow2: Check header_length (CVE-2014-0144)Kevin Wolf4-9/+96
2014-04-01curl: check data size before memcpy to local buffer. (CVE-2014-0144)Fam Zheng1-0/+5
2014-04-01vhdx: Bounds checking for block_size and logical_sector_size (CVE-2014-0148)Jeff Cody1-2/+10
2014-04-01vdi: add bounds checks for blocks_in_image and disk_size header fields (CVE-2...Jeff Cody1-4/+33
2014-04-01vpc: Validate block size (CVE-2014-0142)Kevin Wolf4-0/+87
2014-04-01vpc/vhd: add bounds check for max_table_entries and block_size (CVE-2014-0144)Jeff Cody1-4/+23
2014-04-01bochs: Fix bitmap offset calculationKevin Wolf1-2/+3
2014-04-01bochs: Check extent_size header field (CVE-2014-0142)Kevin Wolf3-0/+29
2014-04-01bochs: Check catalog_size header field (CVE-2014-0143)Kevin Wolf3-1/+35
2014-04-01bochs: Use unsigned variables for offsets and sizes (CVE-2014-0147)Kevin Wolf3-8/+20
2014-04-01bochs: Unify header structs and make them QEMU_PACKEDKevin Wolf1-42/+25
2014-04-01qemu-iotests: Support for bochs formatKevin Wolf5-0/+67
2014-04-01block/cloop: fix offsets[] size off-by-oneStefan Hajnoczi3-7/+14
2014-04-01block/cloop: refuse images with bogus offsets (CVE-2014-0144)Stefan Hajnoczi3-5/+52
2014-04-01block/cloop: refuse images with huge offsets arrays (CVE-2014-0144)Stefan Hajnoczi3-0/+19
2014-04-01block/cloop: prevent offsets_size integer overflow (CVE-2014-0143)Stefan Hajnoczi3-0/+18
2014-04-01block/cloop: validate block_size header field (CVE-2014-0144)Stefan Hajnoczi3-0/+55
2014-04-01qemu-iotests: add cloop input validation testsStefan Hajnoczi4-0/+60
2014-04-01qemu-iotests: add ./check -cloop supportStefan Hajnoczi2-0/+10
2014-04-01qcow2: fix two memory leaks in qcow2_open error code pathPrasad Joshi1-0/+4
2014-04-01vvfat: Fix :floppy: option to suppress partition tableMarkus Armbruster1-1/+1
2014-04-01qemu-img: Release reference to BlockDriverStatePrasad Joshi1-0/+1
2014-04-01input: add sanity checkGerd Hoffmann1-0/+3
2014-04-01input: mouse_set should check input device type.Hani Benhabiles1-5/+11
2014-04-01input: fix input_event_key_number trace eventGerd Hoffmann1-1/+1
2014-04-01linux-user: pass correct host flags to accept4()Petar Jovanovic1-2/+5
2014-03-31Merge remote-tracking branch 'remotes/afaerber/tags/qom-devices-for-2.0' into...Peter Maydell12-48/+388
2014-03-31tmp105-test: Test QOM property and precisionPaolo Bonzini1-3/+76
2014-03-31tmp105-test: Add a second sensor and test that onePaolo Bonzini1-8/+9
generated by cgit v1.1 at 2024-11-17 07:32:53 +0000