[pve-devel] applied: [PATCH qemu-server] anchor CPU flag regex to avoid arbitrary flag suffixes
Thomas Lamprecht
t.lamprecht at proxmox.com
Tue Jan 26 19:27:22 CET 2021
On 18.01.21 14:07, Stefan Reiter wrote:
> Previously one could specify a CPU flag like 'pcidfoobar' and it would
> be accepted, even though we attempt to filter VM-only flags for
> security. AFAICT none of the flags we allow can be turned into any
> others just by appending text, but better safe than sorry.
>
> Reported-by: Oguz Bektas <o.bektas at proxmox.com>
> Signed-off-by: Stefan Reiter <s.reiter at proxmox.com>
> ---
> PVE/QemuServer/CPUConfig.pm | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>
>
applied, thanks!
More information about the pve-devel
mailing list