Skip to content
Snippets Groups Projects
Commit 39419b37 authored by Jiri Denemark's avatar Jiri Denemark Committed by Daniel P. Berrangé
Browse files

qemu: Let empty default VNC password work as documented 

CVE-2016-5008

Setting an empty graphics password is documented as a way to disable
VNC/SPICE access, but QEMU does not always behaves like that. VNC would
happily accept the empty password. Let's enforce the behavior by setting
password expiration to "now".

https://bugzilla.redhat.com/show_bug.cgi?id=1180092



Signed-off-by: default avatarJiri Denemark <jdenemar@redhat.com>
(cherry picked from commit bb848fee)
(cherry picked from commit d933f68e)
parent dcce6659
No related branches found
No related tags found
Hide whitespace changes
Inline Side-by-side
Showing
with 7 additions and 7 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment