mirrors/qemu
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
qemu/ui
History
Paolo Bonzini bfc532703f vnc: avoid underflow when accessing user-provided address 
If hostlen is zero, there is a possibility that addrstr[hostlen - 1]
underflows and, if a closing bracked is there, hostlen - 2 is passed
to g_strndup() on the next line.  If websocket==false then
addrstr[0] would be a colon, but if websocket==true this could in
principle happen.

Fix it by checking hostlen.

Reported by Coverity.

Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
(cherry picked from commit 3f9c41c5df9617510d8533cf6588172efb3df34b)
Signed-off-by: Michael Tokarev <mjt@tls.msk.ru>
2023-04-27 08:52:57 +03:00
..
icons
keycodemapdb @ d21009b1c9
shader
clipboard.c
ui/clipboard: reset the serial state on reset
2022-09-23 14:38:27 +02:00
cocoa.m
ui/cocoa: Run qemu_init in the main thread
2022-09-23 14:36:33 +02:00
console-gl.c
console.c
module: add Error arguments to module_load and module_load_qom
2022-11-06 09:48:50 +01:00
curses_keys.h
curses.c
ui/curses: Avoid dynamic stack allocation
2022-09-22 16:38:28 +01:00
cursor_hidden.xpm
cursor_left_ptr.xpm
cursor.c
dbus-chardev.c
dbus-clipboard.c
dbus-console.c
dbus-display1.xml
dbus-error.c
dbus-listener.c
dbus-module.c
dbus.c
dbus-display: fix test race when initializing p2p connection
2022-07-19 14:35:00 +02:00
dbus.h
ui: fix path to dbus-display1.h
2022-09-29 18:23:51 +02:00
egl-context.c
egl-headless.c
egl-helpers.c
gtk-clipboard.c
gtk-egl.c
ui/gtk: prevent ui lock up when dpy_gl_update called again before current draw event occurs
2022-11-23 12:27:55 +01:00
gtk-gl-area.c
ui/gtk: prevent ui lock up when dpy_gl_update called again before current draw event occurs
2022-11-23 12:27:55 +01:00
gtk.c
ui: fix crash on serial reset, during init
2023-04-10 11:22:21 +03:00
input-barrier.c
input-barrier.h
input-keymap.c
input-legacy.c
input-linux.c
input.c
Trivial: 3 char repeat typos
2022-06-28 11:06:02 +02:00
kbd-state.c
keymaps.c
keymaps.h
meson.build
gtk: disable GTK Clipboard with a new meson option
2022-11-23 12:15:06 +01:00
qemu-pixman.c
qemu-x509.h
qemu.desktop
sdl2-2d.c
sdl2-gl.c
sdl2-input.c
sdl2.c
ui: Switch "-display sdl" to use the QAPI parser
2022-06-03 08:03:28 +02:00
shader.c
spice-app.c
spice-core.c
spice-display.c
spice-input.c
spice-module.c
trace-events
ui: add some vdagent related traces
2022-09-23 14:38:23 +02:00
trace.h
udmabuf.c
util.c
vdagent.c
ui/vdagent: fix serial reset of guest agent
2022-09-23 14:38:27 +02:00
vgafont.h
ui: fix tab indentation
2022-11-08 10:23:06 +01:00
vnc_keysym.h
ui: fix tab indentation
2022-11-08 10:23:06 +01:00
vnc-auth-sasl.c
vnc-auth-sasl.h
vnc-auth-vencrypt.c
vnc-auth-vencrypt.h
vnc-clipboard.c
vnc-enc-hextile-template.h
vnc-enc-hextile.c
Drop useless casts from g_malloc() & friends to pointer
2022-10-22 23:15:40 +02:00
vnc-enc-tight.c
vnc-enc-tight.h
vnc-enc-zlib.c
vnc-enc-zrle.c
vnc-enc-zrle.c.inc
vnc-enc-zrle.h
vnc-enc-zywrle-template.c
ui: fix tab indentation
2022-11-08 10:23:06 +01:00
vnc-enc-zywrle.h
ui: fix tab indentation
2022-11-08 10:23:06 +01:00
vnc-jobs.c
treewide: Remove the unnecessary space before semicolon
2022-10-24 13:41:10 +02:00
vnc-jobs.h
vnc-palette.c
vnc-palette.h
vnc-stubs.c
vnc-ws.c
vnc-ws.h
vnc.c
vnc: avoid underflow when accessing user-provided address
2023-04-27 08:52:57 +03:00
vnc.h
win32-kbd-hook.c
x_keymap.c
x_keymap.h