projects / spice-gtk.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7f26796) | patch
[PATCH] quic: Check RLE lengths
authorFrediano Ziglio <freddy77@gmail.com>
Wed, 29 Apr 2020 14:11:38 +0000 (15:11 +0100)
committerUtkarsh Gupta <utkarsh@debian.org>
Sun, 1 Nov 2020 16:10:46 +0000 (16:10 +0000)
commit4caa7e100d2613051e6e8a07be1306118cb83814
tree43d9ec3507a3194610627e012ed5cd8106138fc2tree | snapshot
parent7f26796acdff20c6c92f1a437f342d05b4738beccommit | diff
[PATCH] quic: Check RLE lengths

Avoid buffer overflows decoding images. On compression we compute
lengths till end of line so it won't cause regressions.
Proved by fuzzing the code.

Signed-off-by: Frediano Ziglio <freddy77@gmail.com>
Acked-by: Uri Lublin <uril@redhat.com>
Gbp-Pq: Name CVE-2020-14355_part3.patch
spice-common/common/quic_tmpl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.