From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:54380) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WkwY1-0003Lk-O4 for qemu-devel@nongnu.org; Thu, 15 May 2014 10:22:20 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WkwXv-0003Ut-F6 for qemu-devel@nongnu.org; Thu, 15 May 2014 10:22:13 -0400 From: Kevin Wolf Date: Thu, 15 May 2014 16:21:52 +0200 Message-Id: <1400163717-1898-1-git-send-email-kwolf@redhat.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Subject: [Qemu-devel] [PATCH v2 0/5] qcow1: Input validation fixes List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: qemu-devel@nongnu.org Cc: kwolf@redhat.com, benoit.canet@irqsave.net, qemu-stable@nongnu.org, stefanha@redhat.com, ppandit@redhat.com v2: - Moved offset_l2_bits definition to patch 3 (Beno=C3=AEt) - Added test cases for corner case values min-1 and max+1 (Beno=C3=AEt) Kevin Wolf (5): qcow1: Make padding in the header explicit qcow1: Check maximum cluster size qcow1: Validate L2 table size (CVE-2014-0222) qcow1: Validate image size (CVE-2014-0223) qcow1: Stricter backing file length check block/qcow.c | 44 +++++++++++++++++---- tests/qemu-iotests/092 | 98 ++++++++++++++++++++++++++++++++++++++++= ++++++ tests/qemu-iotests/092.out | 38 ++++++++++++++++++ tests/qemu-iotests/group | 1 + 4 files changed, 174 insertions(+), 7 deletions(-) create mode 100755 tests/qemu-iotests/092 create mode 100644 tests/qemu-iotests/092.out --=20 1.8.3.1