5
0
mirror of git://git.proxmox.com/git/pve-qemu.git synced 2024-12-22 17:35:52 +03:00
pve-qemu/debian
Oguz Bektas ee8bd5bfbe add patch for CVE-2019-20382 (vnc disconnect memory leak)
oss-security email can be found here[0]

upstream commit here[1]

this effects our vncproxy. dominik and me tested if the issue is present
on our branch and it appears that it is.
in essence when we disconnect from a vnc connection, the memory isn't
free'd afterwards which causes the qemu process to use more and more
memory with each disconnect, which could lead to a dos scenario.

we tested the patch and it seems to mitigate the problem.

[0]: https://seclists.org/oss-sec/2020/q1/105
[1]: https://git.qemu.org/?p=qemu.git;a=commitdiff;h=6bf21f3d83e95bcc4ba35a7a07cc6655e8b010b0

Tested-by: Dominik Csapak <d.csapak@proxmox.com>
Signed-off-by: Oguz Bektas <o.bektas@proxmox.com>
2020-03-05 13:34:29 +01:00
..
patches add patch for CVE-2019-20382 (vnc disconnect memory leak) 2020-03-05 13:34:29 +01:00
source build: use 3.0 source format 2018-03-14 14:18:17 +01:00
changelog fix changelog release 2020-02-18 11:26:27 +01:00
compat Bump dephelper compatibility level to 10 2017-10-16 14:05:22 +02:00
control fix #2478: record python3-minimal as build dependency 2019-11-26 13:07:55 +01:00
copyright import stable-4 build files 2017-04-05 11:39:09 +02:00
docs import stable-4 build files 2017-04-05 11:39:09 +02:00
kvm-ifdown import stable-4 build files 2017-04-05 11:39:09 +02:00
kvm-ifup update to 2.9.0-rc2 build files 2017-04-05 11:40:20 +02:00
Logo.bmp import stable-4 build files 2017-04-05 11:39:09 +02:00
OVMF_CODE-pure-efi.fd import stable-4 build files 2017-04-05 11:39:09 +02:00
OVMF_README.txt import stable-4 build files 2017-04-05 11:39:09 +02:00
OVMF_VARS-pure-efi.fd import stable-4 build files 2017-04-05 11:39:09 +02:00
parse-cpu-flags.pl Write recognized CPUID flags into static file 2019-10-17 13:39:21 +02:00
pve-qemu-kvm.install cleanup 2017-10-16 14:05:22 +02:00
pve-qemu-kvm.links build and include qemu-system-aarch64 2019-04-19 09:53:44 +02:00
pve-qemu-kvm.lintian-overrides add lintian overrides for shipped strange BLOBs 2019-05-22 17:59:27 +02:00
rules Write recognized CPUID flags into static file 2019-10-17 13:39:21 +02:00