Here's a patch which addresses the originally reported issue with raw on filesystem. However, it does not fix the problem. With this patch, the disk is correctly handled as raw, but then it calls Raw.snapshot_extract, which is also vulnerable as described above, as it doesn't explicitly specify input format.
So, I believe this patch is required, but another patch is also required. I will work on this second patch tomorrow.
Here's a patch which addresses the originally reported issue with raw on filesystem. However, it does not fix the problem. With this patch, the disk is correctly handled as raw, but then it calls Raw.snapshot_ extract, which is also vulnerable as described above, as it doesn't explicitly specify input format.
So, I believe this patch is required, but another patch is also required. I will work on this second patch tomorrow.