qemu: Fix seamless SPICE migration CVE-2013-7336
authorMartin Kletzander <mkletzan@redhat.com>
Fri, 20 Sep 2013 14:40:20 +0000 (16:40 +0200)
committerMartin Kletzander <mkletzan@redhat.com>
Fri, 20 Sep 2013 15:11:10 +0000 (17:11 +0200)
commit484cc3217b73b865f00bf42a9c12187b37200699
treeac5c9c392b1063e18cfe0ffab88a831c42883b87
parent7457cbe8714cb6c8222a3533f8844e2f25eefb7e
qemu: Fix seamless SPICE migration

Since the wait is done during migration (still inside
QEMU_ASYNC_JOB_MIGRATION_OUT), the code should enter the monitor as such
in order to prohibit all other jobs from interfering in the meantime.
This patch fixes bug #1009886 in which qemuDomainGetBlockInfo was
waiting on the monitor condition and after GetSpiceMigrationStatus
mangled its internal data, the daemon crashed.

Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1009886
src/qemu/qemu_migration.c