[Spice-devel] [PATCH spice-gtk 0/2] Fix minor read buffer overflow

Christophe Fergeau cfergeau at redhat.com
Thu Nov 29 15:16:28 UTC 2018


For the series,
Acked-by: Christophe Fergeau <cfergeau at redhat.com>

On Thu, Nov 29, 2018 at 07:51:53AM +0000, Frediano Ziglio wrote:
> Avoid in some situations an malicious server to led to some minor
> reading buffer overflows. These overflows cannot cause code execution
> or information leakage.
> 
> Frediano Ziglio (2):
>   spice-channel: Check minumum size of peer_msg
>   spice-channel: Avoid some buffer reading overflows
> 
>  src/spice-channel.c | 18 +++++++++++++++++-
>  1 file changed, 17 insertions(+), 1 deletion(-)
> 
> -- 
> 2.17.2
> 
> _______________________________________________
> Spice-devel mailing list
> Spice-devel at lists.freedesktop.org
> https://lists.freedesktop.org/mailman/listinfo/spice-devel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.freedesktop.org/archives/spice-devel/attachments/20181129/56da9685/attachment.sig>


More information about the Spice-devel mailing list