Fix CVE-2008-0928 - insufficient block device address range checking (902b27d0) · Commits · Anton / libtcg

Commit 902b27d0 authored 17 years ago by Aurelien Jarno

Fix CVE-2008-0928 - insufficient block device address range checking

Qemu 0.9.1 and earlier does not perform range checks for block device
read or write requests, which allows guest host users with root
privileges to access arbitrary memory and escape the virtual machine.

git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@4037 c046a42c-6fe2-441c-8c8c-71466251a162

parent b94ed577

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 79 additions and 3 deletions

Please register or to comment