[PATCH 0/3] hw/display/artist: Fix out-of-buffer accesses found while fu

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH 0/3] hw/display/artist: Fix out-of-buffer accesses found while fu

From:	Philippe Mathieu-Daudé
Subject:	[PATCH 0/3] hw/display/artist: Fix out-of-buffer accesses found while fuzzing
Date:	Sat, 23 May 2020 21:15:14 +0200

Fix various out-of-range buffer access in the artist device
emulation. Bugs found using libFuzzer (docs/devel/fuzzing.txt).

Philippe Mathieu-Daudé (3):
  hw/display/artist: Check offset in draw_line to avoid buffer over-run
  hw/display/artist: Refactor artist_rop8() to avoid buffer over-run
  hw/display/artist: Check offset in block_move to avoid buffer
    over-read

 hw/display/artist.c | 54 +++++++++++++++++++++++++++++++--------------
 1 file changed, 37 insertions(+), 17 deletions(-)

-- 
2.21.3

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/3] hw/display/artist: Fix out-of-buffer accesses found while fuzzing, Philippe Mathieu-Daudé <=
- [PATCH 1/3] hw/display/artist: Check offset in draw_line to avoid buffer over-run, Philippe Mathieu-Daudé, 2020/05/23
- [PATCH 2/3] hw/display/artist: Refactor artist_rop8() to avoid buffer over-run, Philippe Mathieu-Daudé, 2020/05/23
- [PATCH 3/3] hw/display/artist: Check offset in block_move to avoid buffer over-read, Philippe Mathieu-Daudé, 2020/05/23

Prev by Date: Re: [Bug 1880326] [NEW] memory writes make artist_rop8() crash
Next by Date: [PATCH 1/3] hw/display/artist: Check offset in draw_line to avoid buffer over-run
Previous by thread: [Bug 1880326] [NEW] memory writes make artist_rop8() crash
Next by thread: [PATCH 1/3] hw/display/artist: Check offset in draw_line to avoid buffer over-run
Index(es):
- Date
- Thread