69a9b659fd
* All "qemu-img info" calls are now run under resource limitations that limit CPU time to 2 seconds and address space usage to 1 GB. This helps avoid any DoS attacks via malicious images. * All "qemu-img convert" calls now specify the import format so that it does not have to be inferred by qemu-img. SecurityImpact Change-Id: Ib900bbc05cb9ccd90c6f56ccb4bf2006e30cdc80 Closes-Bug: #1449062
13 lines
512 B
YAML
13 lines
512 B
YAML
---
|
|
security:
|
|
- All ``qemu-img info`` calls are now run under resource
|
|
limitations that limit the CPU time and address space
|
|
usage of the process running the command to 2 seconds
|
|
and 1 GB respectively. This addresses the bug
|
|
https://bugs.launchpad.net/glance/+bug/1449062
|
|
|
|
Current usage of "qemu-img" is limited to Glance tasks,
|
|
which by default (since the Liberty release) are only
|
|
available to admin users. We continue to recommend that
|
|
tasks only be exposed to trusted users
|