QEMU With E2K User Support
Go to file
Peter Wu f6e6652d7c block/dmg: validate chunk size to avoid overflow
Previously the chunk size was not checked, allowing for a large memory
allocation. This patch checks whether the chunks size is within the
resource fork length, and whether the resource fork is below the
trailer of the dmg file.

Signed-off-by: Peter Wu <peter@lekensteyn.nl>
Reviewed-by: John Snow <jsnow@redhat.com>
Message-id: 1420566495-13284-6-git-send-email-peter@lekensteyn.nl
Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
2015-02-06 17:24:21 +01:00
audio audio: Don't free hw resources until after hw backend is stopped 2014-12-22 23:12:25 +00:00
backends Drop superfluous conditionals around g_strdup() 2014-12-10 11:30:55 +03:00
block block/dmg: validate chunk size to avoid overflow 2015-02-06 17:24:21 +01:00
bsd-user bsd-user/elfload.c: Don't use ldl() or ldq_raw() 2015-01-20 15:19:33 +00:00
default-configs hw: misc, add educational driver 2015-01-26 12:26:55 +01:00
disas disas/arm-a64.cc: Tell libvixl correct code addresses 2015-02-05 13:37:25 +00:00
docs rcu: add call_rcu 2015-02-02 16:55:10 +01:00
dtc@bc895d6d09
fpu softfloat: Clarify license status 2015-01-29 16:45:45 +00:00
fsdev
gdb-xml
hw virtio-blk: add a knob to disable request merging 2015-02-06 17:24:21 +01:00
include block: add event when disk usage exceeds threshold 2015-02-06 17:24:21 +01:00
libcacard libcacard: fix resource leak 2014-11-14 12:15:40 +01:00
libdecnumber
linux-headers linux-headers: update to 3.18-rc5 2014-11-18 11:24:31 +00:00
linux-user linux-user: support target-to-host SCM_CREDENTIALS 2015-01-27 22:33:57 +02:00
migration Tracify migration/rdma.c 2015-02-05 17:16:14 +01:00
net net: del hub port when peer is deleted 2015-02-06 14:06:44 +00:00
pc-bios pc-bios/s390-ccw: update binary 2015-02-03 13:42:40 +01:00
pixman@87eea99e44
po
qapi block: add event when disk usage exceeds threshold 2015-02-06 17:24:21 +01:00
qga qga: fix false negative argument passing 2014-11-17 11:41:25 +01:00
qobject qjson: Drop trailing space for pretty formatting 2014-12-10 10:25:30 +01:00
qom cpu: initialize cpu->exception_index on reset 2014-12-20 20:38:07 +00:00
roms pseries: Update SLOF firmware image to 20141202 2015-01-07 16:16:27 +01:00
scripts -----BEGIN PGP SIGNATURE----- 2015-02-06 13:46:12 +00:00
slirp
stubs block: Code motion to get rid of stubs/blockdev.c 2014-10-20 13:41:26 +02:00
sysconfigs/target
target-alpha exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-arm target-arm: fix for exponent comparison in recpe_f64 2015-02-05 13:37:25 +00:00
target-cris exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-i386 target-i386: Disable HLE and RTM on Haswell & Broadwell 2015-01-26 12:27:05 +01:00
target-lm32 exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-m68k exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-microblaze exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-mips target-mips: Don't use _raw load/store accessors 2015-01-20 15:19:33 +00:00
target-moxie exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-openrisc target-openrisc: bugfix for dec_sys to decode instructions correctly 2015-01-15 10:44:13 +03:00
target-ppc exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-s390x s390 translator bug fixes 2015-02-03 21:37:16 +00:00
target-sh4 exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
target-sparc target-sparc: Mark gen_load_trap_state_at_tl() as !CONFIG_USER_ONLY 2015-01-21 16:18:01 +00:00
target-tricore target-tricore: Add instructions of RRR opcode format 2015-01-27 11:48:02 +00:00
target-unicore32 gen-icount: check cflags instead of use_icount global 2015-01-03 09:22:12 +01:00
target-xtensa exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
tcg tcg: add separate monitor command to dump opcode counters 2014-12-17 05:49:32 +03:00
tests block: add event when disk usage exceeds threshold 2015-02-06 17:24:21 +01:00
trace
ui spice: fix coverity defect, add unix address support 2015-01-22 13:56:11 +00:00
util rcu: add call_rcu 2015-02-02 16:55:10 +01:00
.exrc
.gitignore .gitignore: Ignore generated "common.env" 2015-01-13 13:43:28 +00:00
.gitmodules
.mailmap
.travis.yml .travis.yml: Add "--enable-modules" 2015-01-26 12:27:05 +01:00
accel.c
aio-posix.c block: Use g_new0() for a bit of extra type checking 2014-12-10 10:31:21 +01:00
aio-win32.c block: Use g_new0() for a bit of extra type checking 2014-12-10 10:31:21 +01:00
arch_init.c xbzrle: optimize XBZRLE to decrease the cache misses 2015-01-15 17:49:43 +05:30
async.c block: replace g_new0 with g_new for bottom half allocation. 2015-01-13 11:47:56 +00:00
balloon.c balloon: Eliminate silly QERR_ macros 2015-01-29 10:06:02 +01:00
block.c block: add accounting for merged requests 2015-02-06 17:24:21 +01:00
blockdev-nbd.c nbd: Change external interface to BlockBackend 2014-12-10 10:31:12 +01:00
blockdev.c block: Split BLOCK_OP_TYPE_COMMIT to BLOCK_OP_TYPE_COMMIT_{SOURCE, TARGET} 2015-01-13 13:43:29 +00:00
blockjob.c block: declare blockjobs and dataplane friends! 2014-11-03 11:41:49 +00:00
bootdevice.c bootdevice: add Error **errp argument for QEMUBootSetHandler 2014-12-22 14:39:21 +08:00
bt-host.c
bt-vhci.c
Changelog
CODING_STYLE
configure block: use fallocate(FALLOC_FL_ZERO_RANGE) in handle_aiocb_write_zeroes 2015-02-06 17:24:20 +01:00
COPYING
COPYING.LIB
coroutine-gthread.c
coroutine-sigaltstack.c coroutine-sigaltstack: Change jmp_buf to sigjmp_buf 2014-11-11 11:07:55 +03:00
coroutine-ucontext.c coroutine-ucontext: use __thread 2015-01-13 13:43:28 +00:00
coroutine-win32.c
cpu-exec.c cpu-exec: simplify init_delay_params 2015-02-02 16:55:11 +01:00
cpus.c cpu-exec: simplify init_delay_params 2015-02-02 16:55:11 +01:00
cputlb.c qemu-log: add log category for MMU info 2014-12-16 18:43:19 +00:00
device_tree.c device-tree: fix memory leak 2015-01-07 16:16:26 +01:00
device-hotplug.c blockdev: Eliminate drive_del() 2014-10-20 13:41:26 +02:00
disas.c
dma-helpers.c hw: Convert from BlockDriverState to BlockBackend, mostly 2014-10-20 14:02:25 +02:00
dump.c dump: Fix dump-guest-memory termination and use-after-close 2014-11-02 10:04:34 +03:00
exec.c exec: fix madvise of NULL pointer 2015-01-26 12:27:05 +01:00
gdbstub.c Add the "-semihosting-config" option. 2014-12-11 12:07:48 +00:00
HACKING
hmp-commands.hx hmp: Remove "info pcmcia" 2014-10-24 12:19:11 +01:00
hmp.c block: add accounting for merged requests 2015-02-06 17:24:21 +01:00
hmp.h
iohandler.c
ioport.c
iothread.c
kvm-all.c kvm: extend kvm_irqchip_add_msi_route to work on s390 2015-01-12 10:14:04 +01:00
kvm-stub.c pc: kvm: check if KVM has free memory slots to avoid abort() 2014-11-23 12:11:29 +02:00
LICENSE vfio: move hw/misc/vfio.c to hw/vfio/pci.c Move vfio.h into include/hw/vfio 2014-12-19 15:24:06 -07:00
main-loop.c Revert "main-loop.c: Handle SIGINT, SIGHUP and SIGTERM synchronously" 2014-10-27 15:05:09 +00:00
MAINTAINERS -----BEGIN PGP SIGNATURE----- 2015-02-06 14:35:52 +00:00
Makefile Makefile: Remove config.status and common.env during 'make distclean' 2015-01-15 10:44:13 +03:00
Makefile.objs QJSON: Add JSON writer 2015-02-05 17:16:14 +01:00
Makefile.target
memory_mapping.c Add skip_dump flag to ignore memory region during dump 2014-10-31 11:29:01 +01:00
memory.c memory: avoid ref/unref in memory_region_find 2015-02-02 16:55:10 +01:00
module-common.c
monitor.c -----BEGIN PGP SIGNATURE----- 2015-02-06 14:35:52 +00:00
nbd.c nbd: Use BlockBackend internally 2014-12-10 10:31:12 +01:00
numa.c numa: make 'info numa' take into account hotplugged memory 2014-11-11 08:50:58 +03:00
os-posix.c os-posix: reorder parent notification for -daemonize 2014-11-02 10:04:34 +03:00
os-win32.c pidfile: stop making pidfile error a special case 2014-11-02 10:04:34 +03:00
page_cache.c xbzrle: rebuild the cache_is_cached function 2015-01-15 17:49:43 +05:30
qapi-schema.json input: misc fixes. 2015-01-22 17:41:59 +00:00
qdev-monitor.c qdev: Use qdev_get_device_class() for -device <type>,help 2014-11-04 17:50:00 +01:00
qdict-test-data.txt
qemu-bridge-helper.c
qemu-char.c Do not hang on full PTY 2015-01-15 10:44:13 +03:00
qemu-coroutine-io.c
qemu-coroutine-lock.c
qemu-coroutine-sleep.c
qemu-coroutine.c coroutine: try harder not to delete coroutines 2015-01-13 13:43:29 +00:00
qemu-doc.texi block: vhdx - change .vhdx_create default block state to ZERO 2014-12-12 15:42:49 +00:00
qemu-img-cmds.hx qemu-img: Add progress output for amend 2014-11-03 11:41:48 +00:00
qemu-img.c qemu-img: Add QEMU_PKGVERSION to QEMU_IMG_VERSION 2015-02-06 17:24:21 +01:00
qemu-img.texi qemu-img: Add progress output for amend 2014-11-03 11:41:48 +00:00
qemu-io-cmds.c qemu-io: Add sigraise command 2014-12-12 15:48:26 +00:00
qemu-io.c qemu-io: Allow explicitly specifying format 2014-12-10 10:31:12 +01:00
qemu-log.c qemu-log: add log category for MMU info 2014-12-16 18:43:19 +00:00
qemu-nbd.c qemu-nbd: Use BlockBackend where reasonable 2014-12-10 10:31:12 +01:00
qemu-nbd.texi
qemu-options-wrapper.h
qemu-options.h
qemu-options.hx spice: add unix address support 2015-01-22 11:18:41 +01:00
qemu-seccomp.c seccomp: add mlockall to whitelist 2015-01-23 14:07:08 +01:00
qemu-tech.texi
qemu-timer.c qemu-timer.c: Trim list of included headers 2015-01-26 18:15:54 +00:00
qemu.nsi
qemu.sasl
qjson.c QJSON: Add JSON writer 2015-02-05 17:16:14 +01:00
qmp-commands.hx block: add event when disk usage exceeds threshold 2015-02-06 17:24:21 +01:00
qmp.c qmp: Clean up qmp_query_spice() #ifndef !CONFIG_SPICE dummy 2015-01-29 10:01:54 +01:00
qtest.c qtest: fix qtest log fd should be initialized before qtest chardev 2014-10-23 16:41:27 +02:00
README
rules.mak rules.mak: Fix module build 2015-01-14 10:38:57 +01:00
savevm.c migration: Append JSON description of migration stream 2015-02-05 17:16:14 +01:00
softmmu_template.h softmmu: provide softmmu access type enum 2014-11-03 11:48:34 +00:00
spice-qemu-char.c spice: remove spice-experimental.h include 2014-12-16 14:15:29 +01:00
tcg-runtime.c
tci.c
thread-pool.c block: Rename BlockDriverCompletionFunc to BlockCompletionFunc 2014-10-20 13:41:27 +02:00
thunk.c
tpm.c
trace-events virtio-blk: introduce multiread 2015-02-06 17:24:21 +01:00
translate-all.c exec.c: Drop TARGET_HAS_ICE define and checks 2015-01-20 15:19:32 +00:00
translate-all.h
user-exec.c
VERSION Open 2.3 development tree 2014-12-09 21:48:34 +00:00
version.rc
vl.c vnc: switch to QemuOpts, allow multiple servers 2015-01-22 11:18:46 +01:00
xen-common-stub.c
xen-common.c
xen-hvm-stub.c
xen-hvm.c Xen: Use the ioreq-server API when available 2015-01-20 14:24:10 +00:00
xen-mapcache.c xen: add a lock for the mapcache 2015-01-20 14:24:17 +00:00

Read the documentation in qemu-doc.html or on http://wiki.qemu-project.org

- QEMU team