qemu: security patch for CVE-2014-3471 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Daniel BORNAZ <daniel.bornaz@enea.com>	2014-07-17 14:24:11 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-07-19 00:09:02 +0100
commit	ee2b26fe759d1d8a0f78c94f1a4f3cfe30ff3c5d (patch)
tree	6de973953c8749b57d06d0980951859300afca66 /meta/recipes-graphics
parent	348102a03d84ba0965556cd88d6e3df70c44eb74 (diff)
download	poky-ee2b26fe759d1d8a0f78c94f1a4f3cfe30ff3c5d.tar.gz

qemu: security patch for CVE-2014-3471

Qemu PCIe bus support is vulnerable to a use-after-free flaw. It could occur via guest, when it tries to hotplug/hotunplug devices on the guest. A user able to add & delete Virtio block devices on a guest could use this flaw to crash the Qemu instance resulting in DoS. Originated-by: Marcel Apfelbaum <address@hidden> Updated the qemu recipe to include the security patch. Upstream-Status: Submitted (From OE-Core rev: a84e1749b489cee5ea219799c35e29b6edead30f) Signed-off-by: Daniel BORNAZ <daniel.bornaz@enea.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-graphics')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: