mirrors/qemu
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
qemu/hw
History
Mauro Matteo Cascella 9569f5cb5b display/qxl-render: fix race condition in qxl_cursor (CVE-2021-4207) 
Avoid fetching 'width' and 'height' a second time to prevent possible
race condition. Refer to security advisory
https://starlabs.sg/advisories/22-4207/ for more information.

Fixes: CVE-2021-4207
Signed-off-by: Mauro Matteo Cascella <mcascell@redhat.com>
Reviewed-by: Marc-André Lureau <marcandre.lureau@redhat.com>
Message-Id: <20220407081106.343235-1-mcascell@redhat.com>
Signed-off-by: Gerd Hoffmann <kraxel@redhat.com>
2022-04-07 12:30:54 +02:00
..
9pfs
9p: move P9_XATTR_SIZE_MAX from 9p.h to 9p.c
2022-04-01 13:06:07 +02:00
acpi
acpi: fix acpi_index migration
2022-04-06 20:03:26 +01:00
adc
alpha
arm
audio
* Fix stack-overflow due to recursive DMA in intel-hda (CVE-2021-3611)
2022-03-22 20:45:30 +00:00
avr
block
char
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
core
acpi: fix acpi_index migration
2022-04-06 20:03:26 +01:00
cpu
cris
display
display/qxl-render: fix race condition in qxl_cursor (CVE-2021-4207)
2022-04-07 12:30:54 +02:00
dma
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
gpio
hppa
hyperv
i2c
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
i386
hw: Fix misleading hexadecimal format
2022-03-24 10:38:42 +00:00
ide
input
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
intc
hw/intc/arm_gicv3_its: Add missing newlines to process_mapc() logging
2022-03-25 14:41:06 +00:00
ipack
ipmi
isa
m68k
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
mem
microblaze
mips
Replace GCC_FMT_ATTR with G_GNUC_PRINTF
2022-03-22 14:40:51 +04:00
misc
hw: Fix misleading hexadecimal format
2022-03-24 10:38:42 +00:00
net
Replace GCC_FMT_ATTR with G_GNUC_PRINTF
2022-03-22 14:40:51 +04:00
nios2
nubus
nvme
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
nvram
xlnx-bbram: hw/nvram: Fix uninitialized Error *
2022-04-05 09:28:04 +01:00
openrisc
pci
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
pci-bridge
pci-host
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
pcmcia
ppc
hw/ppc: free env->tb_env in spapr_unrealize_vcpu()
2022-04-04 08:49:06 +02:00
rdma
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
remote
riscv
rtc
rx
s390x
scsi
hw: Fix misleading hexadecimal format
2022-03-24 10:38:42 +00:00
sd
hw/sd/sdhci: Prohibit DMA accesses to devices
2022-03-21 10:25:21 +01:00
sensor
sh4
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
smbios
sparc
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
sparc64
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
ssi
timer
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
tpm
tricore
usb
vfio
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
virtio
vhost-vdpa: fix typo in a comment
2022-03-31 21:30:56 +02:00
watchdog
xen
Replace GCC_FMT_ATTR with G_GNUC_PRINTF
2022-03-22 14:40:51 +04:00
xenpv
xtensa
Use g_new() & friends where that makes obvious sense
2022-03-21 15:44:44 +01:00
Kconfig
meson.build