[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH] display/qxl-render: fix race condition in qxl_cursor (CVE-20
From: |
Gerd Hoffmann |
Subject: |
Re: [PATCH] display/qxl-render: fix race condition in qxl_cursor (CVE-2022-4207) |
Date: |
Tue, 5 Apr 2022 13:10:36 +0200 |
On Tue, Apr 05, 2022 at 12:35:05PM +0200, Mauro Matteo Cascella wrote:
> Avoid fetching 'width' and 'height' a second time to prevent possible
> race condition. Refer to security advisory
> https://starlabs.sg/advisories/22-4207/ for more information.
>
> Fixes: CVE-2022-4207
> Signed-off-by: Mauro Matteo Cascella <mcascell@redhat.com>
Reviewed-by: Gerd Hoffmann <kraxel@redhat.com>
take care,
Gerd