diff options
author | Peter Krempa <pkrempa@redhat.com> | 2013-07-16 15:39:06 +0200 |
---|---|---|
committer | Peter Krempa <pkrempa@redhat.com> | 2013-07-16 16:51:36 +0200 |
commit | dfc692350a04a70b4ca65667c30869b3bfdaf034 (patch) | |
tree | fb3031e7eb45b1fb9455d5bf8afcdd18a38c0d06 | |
parent | d58c8478443d49c6e702bbb2c56a567ef23f036f (diff) | |
download | libvirt-dfc692350a04a70b4ca65667c30869b3bfdaf034.tar.gz |
qemu: Fix double free of returned JSON array in qemuAgentGetVCPUs()CVE-2013-4153
A part of the returned monitor response was freed twice and caused
crashes of the daemon when using guest agent cpu count retrieval.
# virsh vcpucount dom --guest
Introduced in v1.0.6-48-gc6afcb0
-rw-r--r-- | src/qemu/qemu_agent.c | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/src/qemu/qemu_agent.c b/src/qemu/qemu_agent.c index aca5ff3bb0..72bf211cc7 100644 --- a/src/qemu/qemu_agent.c +++ b/src/qemu/qemu_agent.c @@ -1529,7 +1529,6 @@ qemuAgentGetVCPUs(qemuAgentPtr mon, cleanup: virJSONValueFree(cmd); virJSONValueFree(reply); - virJSONValueFree(data); return ret; } |