CVE-2015-0236: qemu: Check ACLs when dumping security info from save image
authorPeter Krempa <pkrempa@redhat.com>
Tue, 20 Jan 2015 16:01:01 +0000 (17:01 +0100)
committerEric Blake <eblake@redhat.com>
Thu, 22 Jan 2015 20:56:53 +0000 (13:56 -0700)
commitca840e9c827fefadae2e00875b4a552b990b959f
treefe092a187c8c7f587e6d7567c67c47405aa6f0a9
parent63934cae465f757c774db1fa4e86d3c8bda4591b
CVE-2015-0236: qemu: Check ACLs when dumping security info from save image

The ACL check didn't check the VIR_DOMAIN_XML_SECURE flag and the
appropriate permission for it.

(cherry picked from commit 03c3c0c874c84dfa51ef17556062b095c6e1c0a3)
src/qemu/qemu_driver.c
src/remote/remote_protocol.x