)]}'
{
  "commit": "73d963c0a75cb99c6aaa3f6f25e427aa0b35a02e",
  "tree": "17b297d84df619eaf0362531c707bde6e1b45287",
  "parents": [
    "a9c380db3b8c6af19546a68145c8d1438a09c92b"
  ],
  "author": {
    "name": "Michael Roth",
    "email": "mdroth@linux.vnet.ibm.com",
    "time": "Mon Apr 28 16:08:17 2014 +0300"
  },
  "committer": {
    "name": "Juan Quintela",
    "email": "quintela@redhat.com",
    "time": "Mon May 05 22:15:03 2014 +0200"
  },
  "message": "openpic: avoid buffer overrun on incoming migration\n\nCVE-2013-4534\n\nopp-\u003enb_cpus is read from the wire and used to determine how many\nIRQDest elements to read into opp-\u003edst[]. If the value exceeds the\nlength of opp-\u003edst[], MAX_CPU, opp-\u003edst[] can be overrun with arbitrary\ndata from the wire.\n\nFix this by failing migration if the value read from the wire exceeds\nMAX_CPU.\n\nSigned-off-by: Michael Roth \u003cmdroth@linux.vnet.ibm.com\u003e\nReviewed-by: Alexander Graf \u003cagraf@suse.de\u003e\nSigned-off-by: Michael S. Tsirkin \u003cmst@redhat.com\u003e\nSigned-off-by: Juan Quintela \u003cquintela@redhat.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "be76fbd78f1f10d6b781a5972ebc2f1f43ed0d3b",
      "old_mode": 33188,
      "old_path": "hw/intc/openpic.c",
      "new_id": "17136c9333348989af5fa96ea09d56c661ea88c4",
      "new_mode": 33188,
      "new_path": "hw/intc/openpic.c"
    }
  ]
}
