Comment 76 for bug 1449062
Revision history for this message
| Kashyap Chamarthy (kashyapc) wrote Re: qemu-img calls need to be restricted by ulimit (CVE-2015-5162) | #76 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Jeremy: Hemanth (in comment#72) seems to have mixed up this bug (which sets limits for memory / CPU usage for `qemu-img` calls) with *another* bug[x] that is about disk image format guessing.
So, the Nova patches that fix this bug (1449062) are sufficient for the problem it is solving (setting a cap on memory / CPU usage).
[x] https:/
[OSSA 2015-011] Format-guessing and file disclosure
in image convert (CVE-2015-1850, CVE-2015-1851)