aboutsummaryrefslogtreecommitdiff
path: root/block
AgeCommit message (Expand)Author
2014-04-04qcow2: Put cache reference in error caseKevin Wolf
2014-04-04qcow2: Flush metadata during read-only reopenKevin Wolf
2014-04-04iscsi: Don't set error if already set in iscsi_do_inquiryFam Zheng
2014-04-03Merge remote-tracking branch 'remotes/bonzini/scsi-next' into stagingPeter Maydell
2014-04-03iscsi: always query max WRITE SAME lengthPaolo Bonzini
2014-04-03iscsi: ignore flushes on scsi-generic devicesPaolo Bonzini
2014-04-03iscsi: recognize "invalid field" ASCQ from WRITE SAME commandPaolo Bonzini
2014-04-01qcow2: link all L2 meta updates in preallocate()Stefan Hajnoczi
2014-04-01parallels: Sanity check for s->tracks (CVE-2014-0142)Kevin Wolf
2014-04-01parallels: Fix catalog size integer overflow (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Limit snapshot table sizeKevin Wolf
2014-04-01qcow2: Check maximum L1 size in qcow2_snapshot_load_tmp() (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Fix L1 allocation size in qcow2_snapshot_load_tmp() (CVE-2014-0145)Kevin Wolf
2014-04-01qcow2: Fix NULL dereference in qcow2_open() error path (CVE-2014-0146)Kevin Wolf
2014-04-01qcow2: Fix copy_sectors() with VM stateKevin Wolf
2014-04-01dmg: prevent chunk buffer overflow (CVE-2014-0145)Stefan Hajnoczi
2014-04-01dmg: use uint64_t consistently for sectors and lengthsStefan Hajnoczi
2014-04-01dmg: sanitize chunk length and sectorcount (CVE-2014-0145)Stefan Hajnoczi
2014-04-01dmg: use appropriate types when reading chunksStefan Hajnoczi
2014-04-01dmg: drop broken bdrv_pread() loopStefan Hajnoczi
2014-04-01dmg: prevent out-of-bounds array access on terminatorStefan Hajnoczi
2014-04-01dmg: coding style and indentation cleanupStefan Hajnoczi
2014-04-01qcow2: Fix new L1 table size check (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Protect against some integer overflows in bdrv_checkKevin Wolf
2014-04-01qcow2: Fix types in qcow2_alloc_clusters and alloc_clusters_norefKevin Wolf
2014-04-01qcow2: Check new refcount table size on growthKevin Wolf
2014-04-01qcow2: Avoid integer overflow in get_refcount (CVE-2014-0143)Kevin Wolf
2014-04-01qcow2: Don't rely on free_cluster_index in alloc_refcount_block() (CVE-2014-0...Kevin Wolf
2014-04-01qcow2: Fix backing file name length checkKevin Wolf
2014-04-01qcow2: Validate active L1 table offset and size (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Validate snapshot table offset/size (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Validate refcount table offsetKevin Wolf
2014-04-01qcow2: Check refcount table size (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Check backing_file_offset (CVE-2014-0144)Kevin Wolf
2014-04-01qcow2: Check header_length (CVE-2014-0144)Kevin Wolf
2014-04-01curl: check data size before memcpy to local buffer. (CVE-2014-0144)Fam Zheng
2014-04-01vhdx: Bounds checking for block_size and logical_sector_size (CVE-2014-0148)Jeff Cody
2014-04-01vdi: add bounds checks for blocks_in_image and disk_size header fields (CVE-2...Jeff Cody
2014-04-01vpc: Validate block size (CVE-2014-0142)Kevin Wolf
2014-04-01vpc/vhd: add bounds check for max_table_entries and block_size (CVE-2014-0144)Jeff Cody
2014-04-01bochs: Fix bitmap offset calculationKevin Wolf
2014-04-01bochs: Check extent_size header field (CVE-2014-0142)Kevin Wolf
2014-04-01bochs: Check catalog_size header field (CVE-2014-0143)Kevin Wolf
2014-04-01bochs: Use unsigned variables for offsets and sizes (CVE-2014-0147)Kevin Wolf
2014-04-01bochs: Unify header structs and make them QEMU_PACKEDKevin Wolf
2014-04-01block/cloop: fix offsets[] size off-by-oneStefan Hajnoczi
2014-04-01block/cloop: refuse images with bogus offsets (CVE-2014-0144)Stefan Hajnoczi
2014-04-01block/cloop: refuse images with huge offsets arrays (CVE-2014-0144)Stefan Hajnoczi
2014-04-01block/cloop: prevent offsets_size integer overflow (CVE-2014-0143)Stefan Hajnoczi
2014-04-01block/cloop: validate block_size header field (CVE-2014-0144)Stefan Hajnoczi