projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 44e7c3a) | patch
Fix security vulnerability CVE-2007-4993.
authorKeir Fraser <keir@xensource.com>
Tue, 25 Sep 2007 08:34:36 +0000 (09:34 +0100)
committerKeir Fraser <keir@xensource.com>
Tue, 25 Sep 2007 08:34:36 +0000 (09:34 +0100)
commitadbda3b6daadbb9b5d542432a7767d6a172b56dd
tree776b61eb5c180a42ac1e4728facabc05bac79a7atree | snapshot
parent44e7c3aa10557fd10f9125ea1d1fc324cb4dc8bdcommit | diff
Fix security vulnerability CVE-2007-4993.

Protect pygrub from possible malicious content in guest grub
config file.  This fixes CVE-2007-4993.  Original patch from
Jeremy Katz, I updated to close 2 remaining issues pointed out
by Christian and Keir, and to use setattr(self, ...).

Signed-off-by: Chris Wright <chrisw@sous-sol.org>
tools/pygrub/src/GrubConf.py diff | blob | history
tools/pygrub/src/LiloConf.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.