projects / sdk / emulator / qemu.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6d17c60) | patch
CVE-2008-4539: fix a heap overflow in Cirrus emulation
authoraurel32 <aurel32@c046a42c-6fe2-441c-8c8c-71466251a162>
Sat, 1 Nov 2008 00:53:39 +0000 (00:53 +0000)
committeraurel32 <aurel32@c046a42c-6fe2-441c-8c8c-71466251a162>
Sat, 1 Nov 2008 00:53:39 +0000 (00:53 +0000)
commit65d35a09979e63541afc5bfc595b9f1b1b4ae069
tree5098bbe7aae32fcc729cb89a77ed75a1f9773045tree | snapshot
parent6d17c604c0fb35dd7d02b60dd99ce882264e68e5commit | diff
CVE-2008-4539: fix a heap overflow in Cirrus emulation

The code in hw/cirrus_vga.c has changed a lot between CVE-2007-1320 has
been announced and the patch has been applied. As a consequence it has
wrongly applied and QEMU is still vulnerable to this bug if using VNC.

(noticed by Jan Niehusmann)

Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@5587 c046a42c-6fe2-441c-8c8c-71466251a162
hw/cirrus_vga.c diff | blob | history
Domain: SDK / Emulator;