1. Patchew
  2. QEMU
  3. View series

[PULL 0/2] Fixes 20220408 patches

Gerd Hoffmann posted 2 patches 2 years, 1 month ago
Test checkpatch failed
Patches applied successfully (tree, apply log)
git fetch https://github.com/patchew-project/qemu tags/patchew/20220408045252.2375896-1-kraxel@redhat.com
Maintainers: Gerd Hoffmann <kraxel@redhat.com>
hw/display/qxl-render.c | 9 ++++++++-
hw/display/vmware_vga.c | 2 ++
ui/cursor.c             | 8 +++++++-
3 files changed, 17 insertions(+), 2 deletions(-)
[PULL 0/2] Fixes 20220408 patches
Posted by Gerd Hoffmann 2 years, 1 month ago 
The following changes since commit 95a3fcc7487e5bef262e1f937ed8636986764c4e:

  Update version for v7.0.0-rc3 release (2022-04-06 21:26:13 +0100)

are available in the Git repository at:

  git://git.kraxel.org/qemu tags/fixes-20220408-pull-request

for you to fetch changes up to fa892e9abb728e76afcf27323ab29c57fb0fe7aa:

  ui/cursor: fix integer overflow in cursor_alloc (CVE-2021-4206) (2022-04-07 12:30:54 +0200)

----------------------------------------------------------------
two cursor/qxl related security fixes.

----------------------------------------------------------------

Mauro Matteo Cascella (2):
  display/qxl-render: fix race condition in qxl_cursor (CVE-2021-4207)
  ui/cursor: fix integer overflow in cursor_alloc (CVE-2021-4206)

 hw/display/qxl-render.c | 9 ++++++++-
 hw/display/vmware_vga.c | 2 ++
 ui/cursor.c             | 8 +++++++-
 3 files changed, 17 insertions(+), 2 deletions(-)

-- 
2.35.1
Re: [PULL 0/2] Fixes 20220408 patches
Posted by Peter Maydell 2 years, 1 month ago 
On Fri, 8 Apr 2022 at 05:55, Gerd Hoffmann <kraxel@redhat.com> wrote:
>
> The following changes since commit 95a3fcc7487e5bef262e1f937ed8636986764c4e:
>
>   Update version for v7.0.0-rc3 release (2022-04-06 21:26:13 +0100)
>
> are available in the Git repository at:
>
>   git://git.kraxel.org/qemu tags/fixes-20220408-pull-request
>
> for you to fetch changes up to fa892e9abb728e76afcf27323ab29c57fb0fe7aa:
>
>   ui/cursor: fix integer overflow in cursor_alloc (CVE-2021-4206) (2022-04-07 12:30:54 +0200)
>
> ----------------------------------------------------------------
> two cursor/qxl related security fixes.
>

Applied, thanks.

Please update the changelog at https://wiki.qemu.org/ChangeLog/7.0
for any user-visible changes.

-- PMM

Patchew 2.1-devel-0870f84

© 2016 - 2024 Red Hat, Inc.