Skip to content
Commit d59d37de authored by Gerd Hoffmann's avatar Gerd Hoffmann Committed by Michael Roth
Browse files

vmsvga: don't process more than 1024 fifo commands at once 



vmsvga_fifo_run is called in regular intervals (on each display update)
and will resume where it left off.  So we can simply exit the loop,
without having to worry about how processing will continue.

Fixes: CVE-2016-4453
Cc: qemu-stable@nongnu.org
Cc: P J P <ppandit@redhat.com>
Reported-by: default avatar李强 <liqiang6-s@360.cn>
Signed-off-by: default avatarGerd Hoffmann <kraxel@redhat.com>
Message-id: 1464592161-18348-5-git-send-email-kraxel@redhat.com
(cherry picked from commit 4e68a0ee)
Signed-off-by: default avatarMichael Roth <mdroth@linux.vnet.ibm.com>
parent 71798fda
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment