glance

History

Hemanth Makkapati 69a9b659fd Adding constraints around qemu-img calls * All "qemu-img info" calls are now run under resource limitations that limit CPU time to 2 seconds and address space usage to 1 GB. This helps avoid any DoS attacks via malicious images. * All "qemu-img convert" calls now specify the import format so that it does not have to be inferred by qemu-img. SecurityImpact Change-Id: Ib900bbc05cb9ccd90c6f56ccb4bf2006e30cdc80 Closes-Bug: #1449062	2016-09-26 13:28:31 -05:00
..
notes	Adding constraints around qemu-img calls	2016-09-26 13:28:31 -05:00
source	Update reno for stable/newton	2016-09-16 09:54:09 +02:00

Hemanth Makkapati 69a9b659fd Adding constraints around qemu-img calls

* All "qemu-img info" calls are now run under resource limitations
  that limit CPU time to 2 seconds and address space usage to 1 GB.
  This helps avoid any DoS attacks via malicious images.
* All "qemu-img convert" calls now specify the import format so that
  it does not have to be inferred by qemu-img.

SecurityImpact

Change-Id: Ib900bbc05cb9ccd90c6f56ccb4bf2006e30cdc80
Closes-Bug: #1449062

2016-09-26 13:28:31 -05:00

notes

Adding constraints around qemu-img calls

2016-09-26 13:28:31 -05:00

source

Update reno for stable/newton

2016-09-16 09:54:09 +02:00