| Reported on: | 20180301 |
|---|---|
| Published on: | 20180314 |
| Fixed on: | 20180314 |
| Reported by: | Daniel P. Berrangé |
|---|---|
| Patched by: | Daniel P. Berrangé |
The libvirt code that reads data from the QEMU guest agent will read data until encountering a newline, buffering all data in memory with no upper limit applied.
A malicious guest administrator can cause the libvirtd daemon to consume an arbitrary amount of memory by sending lots of data without any newline characters.
Remove the guest agent configuration from any virtual machine that is untrustworthy and reboot it
| Branch | master |
|---|---|
| Broken in: | v0.9.10 |
| Broken in: | v0.9.11 |
| Broken in: | v0.9.12 |
| Broken in: | v0.9.13 |
| Broken in: | v0.10.0 |
| Broken in: | v0.10.1 |
| Broken in: | v0.10.2 |
| Broken in: | v1.0.0 |
| Broken in: | v1.0.1 |
| Broken in: | v1.0.2 |
| Broken in: | v1.0.3 |
| Broken in: | v1.0.4 |
| Broken in: | v1.0.5 |
| Broken in: | v1.0.6 |
| Broken in: | v1.1.0 |
| Broken in: | v1.1.1 |
| Broken in: | v1.1.2 |
| Broken in: | v1.1.3 |
| Broken in: | v1.1.4 |
| Broken in: | v1.2.0 |
| Broken in: | v1.2.1 |
| Broken in: | v1.2.2 |
| Broken in: | v1.2.3 |
| Broken in: | v1.2.4 |
| Broken in: | v1.2.5 |
| Broken in: | v1.2.6 |
| Broken in: | v1.2.7 |
| Broken in: | v1.2.8 |
| Broken in: | v1.2.9 |
| Broken in: | v1.2.10 |
| Broken in: | v1.2.11 |
| Broken in: | v1.2.12 |
| Broken in: | v1.2.13 |
| Broken in: | v1.2.14 |
| Broken in: | v1.2.15 |
| Broken in: | v1.2.16 |
| Broken in: | v1.2.17 |
| Broken in: | v1.2.18 |
| Broken in: | v1.2.19 |
| Broken in: | v1.2.20 |
| Broken in: | v1.2.21 |
| Broken in: | v1.3.0 |
| Broken in: | v1.3.1 |
| Broken in: | v1.3.2 |
| Broken in: | v1.3.3 |
| Broken in: | v1.3.4 |
| Broken in: | v1.3.5 |
| Broken in: | v2.0.0 |
| Broken in: | v2.1.0 |
| Broken in: | v2.2.0 |
| Broken in: | v2.3.0 |
| Broken in: | v2.4.0 |
| Broken in: | v2.5.0 |
| Broken in: | v3.0.0 |
| Broken in: | v3.1.0 |
| Broken in: | v3.2.0 |
| Broken in: | v3.3.0 |
| Broken in: | v3.4.0 |
| Broken in: | v3.5.0 |
| Broken in: | v3.6.0 |
| Broken in: | v3.7.0 |
| Broken in: | v3.8.0 |
| Broken in: | v3.9.0 |
| Broken in: | v3.10.0 |
| Broken in: | v4.0.0 |
| Broken in: | v4.1.0 |
| Fixed in: | v4.2.0 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Fixed by: | fbf31e1a4cd19d6f6e33e0937a009775cd7d9513 |
| Branch | v0.9.11-maint |
|---|---|
| Broken in: | v0.9.11.1 |
| Broken in: | v0.9.11.2 |
| Broken in: | v0.9.11.3 |
| Broken in: | v0.9.11.4 |
| Broken in: | v0.9.11.5 |
| Broken in: | v0.9.11.6 |
| Broken in: | v0.9.11.7 |
| Broken in: | v0.9.11.8 |
| Broken in: | v0.9.11.9 |
| Broken in: | v0.9.11.10 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v0.9.12-maint |
|---|---|
| Broken in: | v0.9.12.1 |
| Broken in: | v0.9.12.2 |
| Broken in: | v0.9.12.3 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v0.10.2-maint |
|---|---|
| Broken in: | v0.10.2.1 |
| Broken in: | v0.10.2.2 |
| Broken in: | v0.10.2.3 |
| Broken in: | v0.10.2.4 |
| Broken in: | v0.10.2.5 |
| Broken in: | v0.10.2.6 |
| Broken in: | v0.10.2.7 |
| Broken in: | v0.10.2.8 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.0-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.1-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.2-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.3-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.4-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.5-maint |
|---|---|
| Broken in: | v1.0.5.1 |
| Broken in: | v1.0.5.2 |
| Broken in: | v1.0.5.3 |
| Broken in: | v1.0.5.4 |
| Broken in: | v1.0.5.5 |
| Broken in: | v1.0.5.6 |
| Broken in: | v1.0.5.7 |
| Broken in: | v1.0.5.8 |
| Broken in: | v1.0.5.9 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.0.6-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.1.0-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.1.1-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.1.2-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.1.3-maint |
|---|---|
| Broken in: | v1.1.3.1 |
| Broken in: | v1.1.3.2 |
| Broken in: | v1.1.3.3 |
| Broken in: | v1.1.3.4 |
| Broken in: | v1.1.3.5 |
| Broken in: | v1.1.3.6 |
| Broken in: | v1.1.3.7 |
| Broken in: | v1.1.3.8 |
| Broken in: | v1.1.3.9 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.1.4-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.0-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.1-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.2-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.3-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.4-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.5-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.6-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.7-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.8-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.9-maint |
|---|---|
| Broken in: | v1.2.9.1 |
| Broken in: | v1.2.9.2 |
| Broken in: | v1.2.9.3 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.10-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.11-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.12-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.13-maint |
|---|---|
| Broken in: | v1.2.13.1 |
| Broken in: | v1.2.13.2 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.14-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.15-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.16-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.17-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.18-maint |
|---|---|
| Broken in: | v1.2.18.1 |
| Broken in: | v1.2.18.2 |
| Broken in: | v1.2.18.3 |
| Broken in: | v1.2.18.4 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.19-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.20-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.2.21-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.3.0-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.3.1-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.3.2-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.3.3-maint |
|---|---|
| Broken in: | v1.3.3.1 |
| Broken in: | v1.3.3.2 |
| Broken in: | v1.3.3.3 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.3.4-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v1.3.5-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v2.0-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v2.1-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v2.2-maint |
|---|---|
| Broken in: | v2.2.1 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v3.0-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v3.2-maint |
|---|---|
| Broken in: | v3.2.1 |
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v3.7-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |
| Branch | v4.1-maint |
|---|---|
| Broken by: | c160ce3316852a797d7b06b4ee101233866e69a9 |