vnc: avoid underflow when accessing user-provided address - focaccia-qemu - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Paolo Bonzini <pbonzini@redhat.com>	2023-03-30 14:23:40 +0200
committer	Paolo Bonzini <pbonzini@redhat.com>	2023-04-20 11:17:35 +0200
commit	3f9c41c5df9617510d8533cf6588172efb3df34b (patch)
tree	ebb251784ad78c2dff960cd3f607e40028b28575 /scripts/qapi/source.py
parent	3488fc326297831e5d57e6d49ed17d9c1c6d056b (diff)
download	focaccia-qemu-3f9c41c5df9617510d8533cf6588172efb3df34b.tar.gz focaccia-qemu-3f9c41c5df9617510d8533cf6588172efb3df34b.zip

vnc: avoid underflow when accessing user-provided address

If hostlen is zero, there is a possibility that addrstr[hostlen - 1]
underflows and, if a closing bracked is there, hostlen - 2 is passed
to g_strndup() on the next line.  If websocket==false then
addrstr[0] would be a colon, but if websocket==true this could in
principle happen.

Fix it by checking hostlen.

Reported by Coverity.

Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

Diffstat (limited to '')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: