motorhead/qemu
1
0
Fork 0
mirror of https://github.com/Motorhead1991/qemu.git synced 2026-02-07 16:50:44 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions
qemu/include/ui
History
Marc-André Lureau 330ef31deb ui/win32: fix potential use-after-free with dbus shared memory 
DisplaySurface may be free before the pixman image is freed, since the
image is refcounted and used by different objects, including pending
dbus messages.

Furthermore, setting the destroy function in
create_displaysurface_from() isn't appropriate, as it may not be used,
and may be overriden as in ramfb.

Set the destroy function when the shared handle is set, use the HANDLE
directly for destroy data, using a single common helper
qemu_pixman_win32_image_destroy().

Signed-off-by: Marc-André Lureau <marcandre.lureau@redhat.com>
Reviewed-by: Akihiko Odaki <akihiko.odaki@daynix.com>
Message-ID: <20241008125028.1177932-5-marcandre.lureau@redhat.com>
2024-10-14 17:34:09 +04:00
..
clipboard.h
console.h ui/cursor: remove cursor_get_mono_image 2024-10-03 17:26:06 +03:00
dbus-display.h
dbus-module.h
dmabuf.h ui/console: move QemuDmaBuf struct def to dmabuf.c 2024-05-14 17:14:12 +04:00
egl-context.h
egl-helpers.h
gtk.h
input.h ui/input: Constify QemuInputHandler structure 2023-10-19 23:13:28 +02:00
kbd-state.h ui/vnc: Do not use console_select() 2024-03-20 10:27:54 +04:00
pixel_ops.h
pixman-minimal.h ui/pixman-minimal.h: fix empty allocation 2023-11-21 14:38:14 +04:00
qemu-pixman.h ui/win32: fix potential use-after-free with dbus shared memory 2024-10-14 17:34:09 +04:00
qemu-spice-module.h
qemu-spice.h
rect.h include: Clean up includes 2024-01-30 21:20:20 +03:00
sdl2.h ui/sdl2: ignore GUI keys in SDL_TEXTINPUT handler 2024-09-13 20:12:16 +02:00
shader.h
spice-display.h ui: spelling fixes 2023-08-31 19:47:43 +02:00
surface.h ui+display: rename is_buffer_shared() -> surface_is_allocated() 2024-06-19 12:42:03 +02:00
win32-kbd-hook.h