subject:"\[Qemu\-devel\] \[PATCH v3 0\/5\] vmware\-vga\: fix CVE\-2014\-3689"

Re: [Qemu-devel] [PATCH v3 0/5] vmware-vga: fix CVE-2014-3689

2014-10-28 Thread Don Koch

On Tue, 28 Oct 2014 10:50:37 +0100 Gerd Hoffmann wrote: > Hi, > > vmware-vga emulation lacks sanity checks in the hardware acceleration > (blit + fill) functions. This patch series plugs the holes. > > v3 changes: > * throw badcmd errors in case the rectangles fail the sanity checks. > v2 c

[Qemu-devel] [PATCH v3 0/5] vmware-vga: fix CVE-2014-3689

2014-10-28 Thread Gerd Hoffmann

Hi, vmware-vga emulation lacks sanity checks in the hardware acceleration (blit + fill) functions. This patch series plugs the holes. v3 changes: * throw badcmd errors in case the rectangles fail the sanity checks. v2 changes: * small whitespace fixup. * do fullscreen update on invalid upda