Re: [Qemu-stable] [PATCH] vnc: sanitize bits_per

qemu-stable

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-stable] [PATCH] vnc: sanitize bits_per_pixel from the client

From:	Gerd Hoffmann
Subject:	Re: [Qemu-stable] [PATCH] vnc: sanitize bits_per_pixel from the client
Date:	Mon, 27 Oct 2014 12:53:36 +0100

On Mo, 2014-10-27 at 12:41 +0100, Petr Matousek wrote:
> bits_per_pixel that are less than 8 could result in accessing
> non-initialized buffers later in the code due to the expectation
> that bytes_per_pixel value that is used to initialize these buffers is
> never zero.
> 
> To fix this check that bits_per_pixel from the client is one of the
> values that the rfb protocol specification allows.
> 
> This is CVE-2014-7815.
> 
> Signed-off-by: Petr Matousek <address@hidden>

applied minor codestyle fix & added to vnc patch queue.

thanks,
  Gerd

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-stable] [PATCH] vnc: sanitize bits_per_pixel from the client, Petr Matousek, 2014/10/27
- Re: [Qemu-stable] [PATCH] vnc: sanitize bits_per_pixel from the client, Gerd Hoffmann <=

Prev by Date: [Qemu-stable] [PATCH] vnc: sanitize bits_per_pixel from the client
Next by Date: [Qemu-stable] [PATCH] tcg/mips: fix store softmmu slow path
Previous by thread: [Qemu-stable] [PATCH] vnc: sanitize bits_per_pixel from the client
Next by thread: [Qemu-stable] [PATCH] tcg/mips: fix store softmmu slow path
Index(es):
- Date
- Thread