[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [PULL 0/3] qemu-ga: security fixes for CVE-2013-2231
|
From: |
Michael Roth |
|
Subject: |
[Qemu-devel] [PULL 0/3] qemu-ga: security fixes for CVE-2013-2231 |
|
Date: |
Thu, 25 Jul 2013 15:37:21 -0500 |
More details on the nature of the CVE are available here:
http://seclists.org/oss-sec/2013/q3/161
The following changes since commit d2f5ea9704af781d4cf14e4be08bb4e37a180260:
pc-testdev: add I/O port to test memory.c auto split/combine (2013-07-25
08:12:28 -0500)
are available in the git repository at:
git://github.com/mdroth/qemu.git qga-pull-2013-7-25
for you to fetch changes up to 340d51df5592c5c11fc3885f7bdedbe581b87366:
qga: escape cmdline args when registering win32 service (CVE-2013-2231)
(2013-07-25 14:49:04 -0500)
----------------------------------------------------------------
Laszlo Ersek (3):
qga/service-win32.c: diagnostic output should go to stderr
ga_install_service(): nest error paths more idiomatically
qga: escape cmdline args when registering win32 service (CVE-2013-2231)
qga/service-win32.c | 105 ++++++++++++++++++++++++++++++++++++++++++---------
1 file changed, 88 insertions(+), 17 deletions(-)
- [Qemu-devel] [PULL 0/3] qemu-ga: security fixes for CVE-2013-2231,
Michael Roth <=