hw/display/qxl-render.c: fix qxl_unpack_chunks() chunk size calculation - focaccia-qemu - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Michael Tokarev <mjt@tls.msk.ru>	2025-02-21 16:34:52 +0300
committer	Michael Tokarev <mjt@tls.msk.ru>	2025-07-25 09:42:11 +0300
commit	b8882becd572d3afb888c836a6ffc7f92c17d1c5 (patch)
tree	2cbe2f1931ac5422bdebfefbedbcec210c03ef6e /hw/core/machine.c
parent	9e601684dc24a521bb1d23215a63e5c6e79ea0bb (diff)
download	focaccia-qemu-b8882becd572d3afb888c836a6ffc7f92c17d1c5.tar.gz focaccia-qemu-b8882becd572d3afb888c836a6ffc7f92c17d1c5.zip

hw/display/qxl-render.c: fix qxl_unpack_chunks() chunk size calculation

In case of multiple chunks, code in qxl_unpack_chunks() takes size of the
wrong (next in the chain) chunk, instead of using current chunk size.
This leads to wrong number of bytes being copied, and to crashes if next
chunk size is larger than the current one.

Based on the code by Gao Yong.

Resolves: https://gitlab.com/qemu-project/qemu/-/issues/1628
Signed-off-by: Michael Tokarev <mjt@tls.msk.ru>
Reviewed-by: Thomas Huth <thuth@redhat.com>

Diffstat (limited to 'hw/core/machine.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: