Comment 75 for bug 2071734
Revision history for this message
| sean mooney (sean-k-mooney) wrote Re: Incomplete file access fix and regression for QCOW2 backing files and VMDK flat descriptors (CVE-2024-40767) | #75 |
ill need to test this again with master on Monday
if we boot a VM form a bad image it will be blocked and end up not having any host.
so if you rescue that with any image you should get a 409 conflict as the VM is not on any host
as i noted in https:/
and if you do it the other way (boot form a good image and rescue with a blocked one)
rescue fails as i noted in
https:/
so at least with a quick attempt i didn't reproduce the behavior you said in
https:/
did you use an image that was in the image cache ?
part of the mitigation of this requires that you first purge any bad images form the image cache on the compute node