Qubes/core-admin
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
e1a2f8dcb2
core-admin/qubes/tests/vm
History
Marek Marczykowski-Górecki e1a2f8dcb2
Enable autoescape in libvirt xml template 
This avoids XML-injection by a malformed property value. If a property
value is controlled by a less privileged entity (like Management VM), it
could lead to a privilege escalation.

Reported by @DemiMarie
2021-03-03 18:31:34 +01:00
..
mix vm/mix/net: prevent setting provides_network=false if qube is still used 2018-12-06 20:37:50 +01:00
__init__.py Enable autoescape in libvirt xml template 2021-03-03 18:31:34 +01:00
adminvm.py Start using 'async def' syntax 2020-11-26 05:13:48 +01:00
appvm.py tests: extend TestPool storage driver to make create_on_disk working 2020-07-08 06:05:01 +02:00
dispvm.py Avoid permission problems 2020-11-27 20:05:18 -05:00
init.py Add pre- events to vm features 2020-03-17 18:46:12 +01:00
qubesvm.py Enable autoescape in libvirt xml template 2021-03-03 18:31:34 +01:00