gitlab scraper: download in toml and text format

author: Christian Krinitsin <mail@krinitsin.com> 2025-05-30 16:52:07 +0200
committer: Christian Krinitsin <mail@krinitsin.com> 2025-05-30 16:52:17 +0200
commit: 9260319e7411ff8281700a532caa436f40120ec4 (patch)
tree: 2f6bfe5f3458dd49d328d3a9eb508595450adec0 /gitlab/issues_text/target_missing/host_missing/accel_missing/2528
parent: 225caa38269323af1bfc2daadff5ec8bd930747f (diff)
download: qemu-analysis-9260319e7411ff8281700a532caa436f40120ec4.tar.gz
qemu-analysis-9260319e7411ff8281700a532caa436f40120ec4.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/gitlab/issues_text/target_missing/host_missing/accel_missing/2528 b/gitlab/issues_text/target_missing/host_missing/accel_missing/2528
new file mode 100644
index 000000000..a3295ce56
--- /dev/null
+++ b/gitlab/issues_text/target_missing/host_missing/accel_missing/2528
@@ -0,0 +1,9 @@
+nbd: CVE-2024-7409 fix is incomplete
+Description of problem:
+Patch will hit list soon, but opening issue here since if this misses 9.1, we would need to allocate a second CVE for having an incomplete fix (a remaining use-after-free) in the code originally proposed for CVE-2024-7409.
+Steps to reproduce:
+1. stress test of attempting repeated 'qemu-nbd --list' in parallel with repeated 'nbd-server-start/nbd-server-stop' loops in a qemu process revealed a use-after-free SEGV of nbd_server->listener
+2.
+3.
+Additional information:
+
author	Christian Krinitsin <mail@krinitsin.com>	2025-05-30 16:52:07 +0200
committer	Christian Krinitsin <mail@krinitsin.com>	2025-05-30 16:52:17 +0200
commit	9260319e7411ff8281700a532caa436f40120ec4 (patch)
tree	2f6bfe5f3458dd49d328d3a9eb508595450adec0 /gitlab/issues_text/target_missing/host_missing/accel_missing/2528
parent	225caa38269323af1bfc2daadff5ec8bd930747f (diff)
download	qemu-analysis-9260319e7411ff8281700a532caa436f40120ec4.tar.gz qemu-analysis-9260319e7411ff8281700a532caa436f40120ec4.zip