mirrors/qemu
0
0
Fork 0
mirror of https://github.com/qemu/qemu.git synced 2024-12-18 17:53:40 +08:00
Code Issues Packages Projects Releases Wiki Activity
4c93ce54e7
qemu/include/ui
History
Mauro Matteo Cascella 4c93ce54e7 ui/cursor: make width/height unsigned 16-bit integer 
Although not actually exploitable at the moment, a negative width/height
could make datasize wrap around and potentially lead to buffer overflow.
Since there is no reason a negative width/height is ever appropriate,
modify QEMUCursor struct and cursor_alloc prototype to accept uint16_t.
This protects us against accidentally introducing future bugs.

Signed-off-by: Mauro Matteo Cascella <mcascell@redhat.com>
Reported-by: Jacek Halon <jacek.halon@gmail.com>
Reported-by: Yair Mizrahi <yairh33@gmail.com>
Reported-by: Elsayed El-Refa'ei <e.elrefaei99@gmail.com>
Reviewed-by: Marc-André Lureau <marcandre.lureau@redhat.com>
Reviewed-by: Daniel P. Berrangé <berrange@redhat.com>
Message-Id: <20230523163023.608121-1-mcascell@redhat.com>
2023-05-28 13:08:25 +04:00
..
clipboard.h ui/clipboard: add a clipboard reset serial event 2021-12-21 10:50:21 +04:00
console.h ui/cursor: make width/height unsigned 16-bit integer 2023-05-28 13:08:25 +04:00
dbus-display.h Clean up ill-advised or unusual header guards 2022-05-11 16:50:01 +02:00
dbus-module.h Clean up ill-advised or unusual header guards 2022-05-11 16:50:01 +02:00
egl-context.h ui: split the GL context in a different object 2021-12-21 10:50:21 +04:00
egl-helpers.h ui: introduce egl_init() 2023-03-13 23:48:45 +04:00
gtk.h ui: Deliver refresh rate via QemuUIInfo 2022-06-14 10:34:37 +02:00
input.h include: Make headers more self-contained 2019-08-16 13:31:51 +02:00
kbd-state.h Normalize header guard symbol definition. 2019-05-13 08:58:55 +02:00
pixel_ops.h ui: move files to ui/ and include/ui/ 2012-12-19 08:31:30 +01:00
qemu-pixman.h Replace config-time define HOST_WORDS_BIGENDIAN 2022-04-06 10:50:37 +02:00
qemu-spice-module.h spice: wire up monitor in QemuSpiceOps. 2020-10-21 15:46:14 +02:00
qemu-spice.h ui/spice: QXLInterface method set_mm_time() is now dead, drop 2023-01-19 13:30:01 +01:00
sdl2.h ui: avoid warnings about directdb on Alpine / musl libc 2022-01-18 16:42:41 +00:00
shader.h opengl: add flipping vertex shader 2017-10-17 10:25:42 +02:00
spice-display.h ui/spice: Require spice-server >= 0.14.0 2023-01-19 13:30:01 +01:00
win32-kbd-hook.h ui/win32-kbd-hook: handle AltGr in a hook procedure 2020-05-19 09:06:44 +02:00