Am 07.08.2014 um 20:34 hat Max Reitz geschrieben:
On 24.06.2014 17:36, Kevin Wolf wrote:
A not too small part of the recent CVEs were DoS scenarios by letting
qemu abort with too large memory allocations. We generally fixed these
cases by setting some limits on values read from image files
On 24.06.2014 17:36, Kevin Wolf wrote:
A not too small part of the recent CVEs were DoS scenarios by letting
qemu abort with too large memory allocations. We generally fixed these
cases by setting some limits on values read from image files that
influence the size of allocations.
Because we
A not too small part of the recent CVEs were DoS scenarios by letting
qemu abort with too large memory allocations. We generally fixed these
cases by setting some limits on values read from image files that
influence the size of allocations.
Because we still need to allow reading large images,
On Thu, Jun 05, 2014 at 03:36:12PM +0200, Kevin Wolf wrote:
A not too small part of the recent CVEs were DoS scenarios by letting
qemu abort with too large memory allocations. We generally fixed these
cases by setting some limits on values read from image files that
influence the size of
On Thu, Jun 05, 2014 at 03:36:12PM +0200, Kevin Wolf wrote:
A not too small part of the recent CVEs were DoS scenarios by letting
qemu abort with too large memory allocations. We generally fixed these
cases by setting some limits on values read from image files that
influence the size of
A not too small part of the recent CVEs were DoS scenarios by letting
qemu abort with too large memory allocations. We generally fixed these
cases by setting some limits on values read from image files that
influence the size of allocations.
Because we still need to allow reading large images,
