Commit 91f7511d authored Feb 09, 2022 by Joe Slater Committed by Richard Purdie Feb 12, 2022

virglrenderer: fix CVE-2022-0135 and -0175

CVE-2022-0135 concerns out-of-bounds writes in read_transfer_data().
CVE-2022-0175 concerns using malloc() instead of calloc().

We "cherry-pick" from upstream. The actual cherry-picks are from
upstream master to branch-0.9.1 and are the patches entered here.

Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

parent baec04b9

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 2d1ed522
· Feb 25, 2022

mentioned in commit 2d1ed522

mentioned in commit 2d1ed522def1386ce2810c4634a394774b42228c

Toggle commit list
mirror @mirror
mentioned in commit 225f8b28
· Mar 04, 2022

mentioned in commit 225f8b28

mentioned in commit 225f8b28ff0b3357382f517f39eb315b4bac9138

Toggle commit list

Please register or to comment