[libvirt/f14/master] fix one crash in the the error handling for CVE-2011-1146
Daniel Veillard
veillard at fedoraproject.org
Wed Mar 16 09:01:43 UTC 2011
commit a97e8a832b2be992d041731b0a144686e918a331
Author: Daniel Veillard <veillard at redhat.com>
Date: Wed Mar 16 17:00:53 2011 +0800
fix one crash in the the error handling for CVE-2011-1146
libvirt-0.8.3-read-only-checks.patch | 2 +-
libvirt.spec | 5 ++++-
2 files changed, 5 insertions(+), 2 deletions(-)
---
diff --git a/libvirt-0.8.3-read-only-checks.patch b/libvirt-0.8.3-read-only-checks.patch
index 76cce55..39167f7 100644
--- a/libvirt-0.8.3-read-only-checks.patch
+++ b/libvirt-0.8.3-read-only-checks.patch
@@ -29,7 +29,7 @@ Rebased to 0.8.2, mostly changed the call of the error routines
return (NULL);
}
+ if (conn->flags & VIR_CONNECT_RO) {
-+ virLibDomainError(NULL, VIR_ERR_OPERATION_DENIED, __FUNCTION__);
++ virLibConnError(NULL, VIR_ERR_OPERATION_DENIED, __FUNCTION__);
+ goto error;
+ }
diff --git a/libvirt.spec b/libvirt.spec
index d520056..eed7dfd 100644
--- a/libvirt.spec
+++ b/libvirt.spec
@@ -185,7 +185,7 @@
Summary: Library providing a simple API virtualization
Name: libvirt
Version: 0.8.3
-Release: 5%{?dist}%{?extra_release}
+Release: 6%{?dist}%{?extra_release}
License: LGPLv2+
Group: Development/Libraries
Source: http://libvirt.org/sources/libvirt-%{version}.tar.gz
@@ -921,6 +921,9 @@ fi
%endif
%changelog
+* Wed Mar 16 2011 Daniel Veillard <veillard at redhat.com> 0.8.3-6
+- fix one crash in the the error handling for previous patch
+
* Tue Mar 15 2011 Daniel Veillard <veillard at redhat.com> 0.8.3-5
- fix a lack of API check on read-only connections 683655
- CVE-2011-1146
More information about the scm-commits
mailing list