motorhead/qemu
1
0
Fork 0
mirror of https://github.com/Motorhead1991/qemu.git synced 2026-01-03 13:10:32 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions
qemu/qapi
History
Laszlo Ersek f24582d6ad qapi: fix double free in qmp_output_visitor_cleanup() 
Stack entries in QmpOutputVisitor are navigation links (weak references),
except the bottom (ie. least recently added) entry, which owns the root
QObject [1]. Make qmp_output_visitor_cleanup() drop the stack entries,
then release the QObject tree by the root.

Attempting to serialize an invalid enum inside a dictionary is an example
for triggering the double free.

[1] http://lists.nongnu.org/archive/html/qemu-devel/2012-03/msg03276.html

Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Signed-off-by: Luiz Capitulino <lcapitulino@redhat.com>
2012-03-27 09:11:00 -03:00
..
qapi-dealloc-visitor.c qapi: dealloc visitor, support freeing of nested lists 2011-10-04 11:00:46 -03:00
qapi-dealloc-visitor.h qapi: add QAPI dealloc visitor 2011-07-21 16:48:13 -03:00
qapi-types-core.h qapi: add code generation support for middle mode 2011-10-04 11:00:46 -03:00
qapi-visit-core.c qapi: allow sharing enum implementation across visitors 2012-02-21 10:21:05 +01:00
qapi-visit-core.h qapi: add QAPI visitor core 2011-07-21 16:48:13 -03:00
qapi-visit-impl.h qapi: allow sharing enum implementation across visitors 2012-02-21 10:21:05 +01:00
qmp-core.h guest agent: add supported command list to guest-info RPC 2011-12-12 17:06:21 -06:00
qmp-dispatch.c guest agent: add RPC blacklist command-line option 2011-12-12 17:06:21 -06:00
qmp-input-visitor.c qapi: drop qmp_input_end_optional 2012-02-21 10:21:05 +01:00
qmp-input-visitor.h qapi: add QMP input visitor 2011-07-21 16:48:13 -03:00
qmp-output-visitor.c qapi: fix double free in qmp_output_visitor_cleanup() 2012-03-27 09:11:00 -03:00
qmp-output-visitor.h qapi: add QMP output visitor 2011-07-21 16:48:13 -03:00
qmp-registry.c guest agent: add supported command list to guest-info RPC 2011-12-12 17:06:21 -06:00
string-input-visitor.c qapi: add string-based visitors 2012-02-21 10:21:05 +01:00
string-input-visitor.h qapi: add string-based visitors 2012-02-21 10:21:05 +01:00
string-output-visitor.c qapi: add string-based visitors 2012-02-21 10:21:05 +01:00
string-output-visitor.h qapi: add string-based visitors 2012-02-21 10:21:05 +01:00