search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(merge: b8a86c4 2cdb5e1)
Merge remote-tracking branch 'remotes/kraxel/tags/pull-cve-2015-1779-20150401-2'...
commitfde069f751a9aa7e597c9d297a9995eca418a403
authorPeter Maydell <peter.maydell@linaro.org>
Wed, 1 Apr 2015 16:18:51 +0000 (1 17:18 +0100)
committerPeter Maydell <peter.maydell@linaro.org>
Wed, 1 Apr 2015 16:18:51 +0000 (1 17:18 +0100)
tree6c56b659ac57e398ef32f2a5f77dc9ba95a7d65ftree | snapshot (tar.gz zip)
parentb8a86c4ac4d04c106ba38fbd707041cba334a155commit | diff
parent2cdb5e142fb93e875fa53c52864ef5eb8d5d8b41commit | diff
Merge remote-tracking branch 'remotes/kraxel/tags/pull-cve-2015-1779-20150401-2' into staging

vnc: fix websocket security issues (cve-2015-1779).

# gpg: Signature made Wed Apr  1 16:14:34 2015 BST using RSA key ID D3E87138
# gpg: Good signature from "Gerd Hoffmann (work) <kraxel@redhat.com>"
# gpg:                 aka "Gerd Hoffmann <gerd@kraxel.org>"
# gpg:                 aka "Gerd Hoffmann (private) <kraxel@gmail.com>"

* remotes/kraxel/tags/pull-cve-2015-1779-20150401-2:
  CVE-2015-1779: limit size of HTTP headers from websockets clients
  CVE-2015-1779: incrementally decode websocket frames

Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
QEmu