Hello Gerd, Laszlo, Thank you so much for the detailed analysis and explanations, appreciate it.
On Thu, 28 Aug 2014 07:57:17 GMT, kra...@redhat.com wrote: > How to go forward with this? Ok to post the patches for review in > public (aka qemu-devel)? Or do we have a CVE with embargo? Please use 'CVE-2014-3615' for the information disclosure and potential memory corruption issue. When you submit patches upstream include this in the commit log. Please include me in the CC list when you send patches upstream. Thank you. -- Prasad J Pandit / Red Hat Product Security
