render / rpms / libvirt

Forked from rpms/libvirt 10 months ago
Clone
Source Code
GIT

Blame SOURCES/libvirt-qemu-agent-set-ifname-to-NULL-after-freeing.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-rhel c8-sig-altarch-stream-rhel c8-stream-rhel c8s-sig-hyperscale c8s-stream-rhel c9 c9-beta c9s-sig-hyperscale libvirt-hyperscale-10.4.0 upgrade-hyperscale-libvirt
  1.   2ba5aaceffa1cbb6a0a8ac79c6b530d41c63b532
  2.   SOURCES
  3.   libvirt-qemu-agent-set-ifname-to-NULL-after-freeing.patch
Blob History Raw
2ba5aa 
From 1b7381da7db7092bf774779a610f153532efa5d4 Mon Sep 17 00:00:00 2001
2ba5aa 
Message-Id: <1b7381da7db7092bf774779a610f153532efa5d4@dist-git>
2ba5aa 
From: =?UTF-8?q?J=C3=A1n=20Tomko?= <jtomko@redhat.com>
2ba5aa 
Date: Tue, 29 Sep 2020 14:43:06 +0200
2ba5aa 
Subject: [PATCH] qemu: agent: set ifname to NULL after freeing
2ba5aa 
MIME-Version: 1.0
2ba5aa 
Content-Type: text/plain; charset=UTF-8
2ba5aa 
Content-Transfer-Encoding: 8bit
2ba5aa
2ba5aa 
CVE-2020-25637
2ba5aa
2ba5aa 
Signed-off-by: Ján Tomko <jtomko@redhat.com>
2ba5aa 
Reported-by: Ilja Van Sprundel <ivansprundel@ioactive.com>
2ba5aa 
Fixes: 0977b8aa071de550e1a013d35e2c72615e65d520
2ba5aa 
Reviewed-by: Mauro Matteo Cascella <mcascell@redhat.com>
2ba5aa 
(cherry picked from commit a63b48c5ecef077bf0f909a85f453a605600cf05)
2ba5aa 
Signed-off-by: Ján Tomko <jtomko@redhat.com>
2ba5aa
2ba5aa 
Conflicts: src/qemu/qemu_agent.c
2ba5aa 
    Commit ee247e1d which switched virStringListFree
2ba5aa 
    to g_strfreev is missing downstream.
2ba5aa 
Message-Id: <01acbf07b5b165b89cc73a127fe7bda666bdf235.1601383236.git.jtomko@redhat.com>
2ba5aa 
Reviewed-by: Jiri Denemark <jdenemar@redhat.com>
2ba5aa 
---
2ba5aa 
 src/qemu/qemu_agent.c | 1 +
2ba5aa 
 1 file changed, 1 insertion(+)
2ba5aa
2ba5aa 
diff --git a/src/qemu/qemu_agent.c b/src/qemu/qemu_agent.c
2ba5aa 
index f13126aeee..968534b594 100644
2ba5aa 
--- a/src/qemu/qemu_agent.c
2ba5aa 
+++ b/src/qemu/qemu_agent.c
2ba5aa 
@@ -2192,6 +2192,7 @@ qemuAgentGetInterfaces(qemuAgentPtr mon,
2ba5aa
2ba5aa 
         /* Has to be freed for each interface. */
2ba5aa 
         virStringListFree(ifname);
2ba5aa 
+        ifname = NULL;
2ba5aa
2ba5aa 
         /* as well as IP address which - moreover -
2ba5aa 
          * can be presented multiple times */
2ba5aa 
--
2ba5aa 
2.28.0
2ba5aa

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation