Skip to content
Commit 3328c14e authored by hangaohuai's avatar hangaohuai Committed by Michael Roth
Browse files

fix :cirrus_vga fix OOB read case qemu Segmentation fault 



check the validity of parameters in cirrus_bitblt_rop_fwd_transp_xxx
and cirrus_bitblt_rop_fwd_xxx to avoid the OOB read which causes qemu Segmentation fault.

After the fix, we will touch the assert in
cirrus_invalidate_region:
assert(off_cur_end >= off_cur);

Signed-off-by: default avatarfangying <fangying1@huawei.com>
Signed-off-by: default avatarhangaohuai <hangaohuai@huawei.com>
Message-id: 20170314063919.16200-1-hangaohuai@huawei.com
Signed-off-by: default avatarGerd Hoffmann <kraxel@redhat.com>
(cherry picked from commit 215902d7)
Signed-off-by: default avatarMichael Roth <mdroth@linux.vnet.ibm.com>
parent a99fd943
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment