cirrus: fix blit region check - focaccia-qemu - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Gerd Hoffmann <kraxel@redhat.com>	2014-11-19 11:37:42 +0100
committer	Gerd Hoffmann <kraxel@redhat.com>	2014-12-01 10:25:12 +0100
commit	d3532a0db02296e687711b8cdc7791924efccea0 (patch)
tree	f1b35defb8a47354f105aa4a3f443025131a0273 /qemu-timer.c
parent	db12451decf7dfe0f083564183e135f2095228b9 (diff)
download	focaccia-qemu-d3532a0db02296e687711b8cdc7791924efccea0.tar.gz focaccia-qemu-d3532a0db02296e687711b8cdc7791924efccea0.zip

cirrus: fix blit region check

Issues:
 * Doesn't check pitches correctly in case it is negative.
 * Doesn't check width at all.

Turn macro into functions while being at it, also factor out the check
for one region which we then can simply call twice for src + dst.

This is CVE-2014-8106.

Reported-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Gerd Hoffmann <kraxel@redhat.com>
Reviewed-by: Paolo Bonzini <pbonzini@redhat.com>

Diffstat (limited to 'qemu-timer.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: