提交 · 65d35a09979e63541afc5bfc595b9f1b1b4ae069 · openeuler / qemu

01 11月, 2008 1 次提交

CVE-2008-4539: fix a heap overflow in Cirrus emulation · 65d35a09

由 aurel32 提交于 11月 01, 2008

The code in hw/cirrus_vga.c has changed a lot between CVE-2007-1320 has
been announced and the patch has been applied. As a consequence it has
wrongly applied and QEMU is still vulnerable to this bug if using VNC.

(noticed by Jan Niehusmann)
Signed-off-by: NAurelien Jarno <aurelien@aurel32.net>

git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@5587 c046a42c-6fe2-441c-8c8c-71466251a162

65d35a09

28 9月, 2008 1 次提交

Optional "precise" VGA retrace support · cb5a7aa8

由 malc 提交于 9月 28, 2008

Selected via: -vga <name>,retrace=precise

git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@5336 c046a42c-6fe2-441c-8c8c-71466251a162

cb5a7aa8

24 9月, 2008 1 次提交

Don't use ds->dpy_copy directly from hw/ (Jan Niehusmann). · 38334f76

由 balrog 提交于 9月 24, 2008

I left a TODO in the code because this still doesn't definitely
fix all issues.


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@5308 c046a42c-6fe2-441c-8c8c-71466251a162

38334f76

19 8月, 2008 1 次提交

i386: fix isapc machine · d5529471

由 aurel32 提交于 8月 19, 2008

- cirrus vga: enable graphic console
- pc: don't use apic for interrupts on ISA machine
Signed-off-by: NAurelien Jarno <aurelien@aurel32.net>

git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@5026 c046a42c-6fe2-441c-8c8c-71466251a162

d5529471

02 7月, 2008 1 次提交
- P
  Implement resolution switching in common console code. · c60e08d9
  由 pbrook 提交于 7月 01, 2008
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@4812 c046a42c-6fe2-441c-8c8c-71466251a162
```
  c60e08d9
08 5月, 2008 1 次提交
- A
  cirrusfb: proper "Attribute Controller Toggle Readback" register behaviour · ca896ef3
  由 aurel32 提交于 5月 08, 2008
```
(Marcelo Tosatti)


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@4386 c046a42c-6fe2-441c-8c8c-71466251a162
```
  ca896ef3
06 5月, 2008 1 次提交

CVE-2007-1320 - Cirrus LGD-54XX "bitblt" heap overflow · b2eb849d

由 aurel32 提交于 5月 05, 2008

I have just noticed that patch for CVE-2007-1320 has never been applied
to the QEMU CVS. Please find it below.

| Multiple heap-based buffer overflows in the cirrus_invalidate_region
| function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and
| possibly other products, might allow local users to execute arbitrary
| code via unspecified vectors related to "attempting to mark
| non-existent regions as dirty," aka the "bitblt" heap overflow.


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@4340 c046a42c-6fe2-441c-8c8c-71466251a162

b2eb849d

11 2月, 2008 1 次提交

Add an ncurses UI. · 4d3b6f6e

由 balrog 提交于 2月 10, 2008


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@3976 c046a42c-6fe2-441c-8c8c-71466251a162

4d3b6f6e

17 12月, 2007 1 次提交

qemu_put signedness fixes, by Andre Przywara. · bee8d684

由 ths 提交于 12月 16, 2007


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@3824 c046a42c-6fe2-441c-8c8c-71466251a162

bee8d684

18 11月, 2007 1 次提交

Break up vl.h. · 87ecb68b

由 pbrook 提交于 11月 17, 2007


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@3674 c046a42c-6fe2-441c-8c8c-71466251a162

87ecb68b

17 9月, 2007 2 次提交
- T
  find -type f | xargs sed -i 's/[\t ]*$//g' # Yes, again. Note the star in the regex. · 3b46e624
  由 ths 提交于 9月 17, 2007
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@3177 c046a42c-6fe2-441c-8c8c-71466251a162
```
  3b46e624
- T
  find -type f | xargs sed -i 's/[\t ]$//g' # on most files · 5fafdf24
  由 ths 提交于 9月 16, 2007
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@3173 c046a42c-6fe2-441c-8c8c-71466251a162
```
  5fafdf24
01 8月, 2007 1 次提交
- T
  Cirrus transparent BITBLT (w/o color expand), by Hitoshi Osada. · 96cf2df8
  由 ths 提交于 7月 31, 2007
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@3101 c046a42c-6fe2-441c-8c8c-71466251a162
```
  96cf2df8
03 6月, 2007 1 次提交

Spelling fixes, by Stefan Weil. · e91c8a77

由 ths 提交于 6月 03, 2007


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@2927 c046a42c-6fe2-441c-8c8c-71466251a162

e91c8a77

02 4月, 2007 1 次提交

VMware SVGA II emulation, by Andrzej Zaborowski. · d34cab9f

由 ths 提交于 4月 02, 2007


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@2579 c046a42c-6fe2-441c-8c8c-71466251a162

d34cab9f

18 8月, 2006 1 次提交

fixed VGA resolutions with height > 1024 · 83acc96b

由 bellard 提交于 8月 18, 2006


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@2121 c046a42c-6fe2-441c-8c8c-71466251a162

83acc96b

17 8月, 2006 1 次提交

save VGA PCI state · d2269f6f

由 bellard 提交于 8月 17, 2006


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@2113 c046a42c-6fe2-441c-8c8c-71466251a162

d2269f6f

01 5月, 2006 1 次提交

VNC server (Anthony Liguori) · 24236869

由 bellard 提交于 4月 30, 2006


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1869 c046a42c-6fe2-441c-8c8c-71466251a162

24236869

27 4月, 2005 1 次提交

depth=24 write mask fix (Volker Ruppert) · ad81218e

由 bellard 提交于 4月 26, 2005


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1404 c046a42c-6fe2-441c-8c8c-71466251a162

ad81218e

18 4月, 2005 1 次提交

destination write mask support, fixed banked memory access, read-only access... · e3a4e4b6

由 bellard 提交于 4月 17, 2005

destination write mask support, fixed banked memory access, read-only access for bus type in SR 0x17 (Volker Ruppert)


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1364 c046a42c-6fe2-441c-8c8c-71466251a162

e3a4e4b6

27 1月, 2005 1 次提交

mode 4 and 5 write fix (Magnus Damn) · 0b74ed78

由 bellard 提交于 1月 26, 2005


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1241 c046a42c-6fe2-441c-8c8c-71466251a162

0b74ed78

16 11月, 2004 1 次提交

bitblt fix (aka Solaris display fix) · c9c0eae8

由 bellard 提交于 11月 15, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1150 c046a42c-6fe2-441c-8c8c-71466251a162

c9c0eae8

08 11月, 2004 1 次提交

CRTC register write protection fix · 9bb34eac

由 bellard 提交于 11月 07, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1126 c046a42c-6fe2-441c-8c8c-71466251a162

9bb34eac

10 10月, 2004 1 次提交

faster Cirrus VGA VRAM access · 8926b517

由 bellard 提交于 10月 10, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1114 c046a42c-6fe2-441c-8c8c-71466251a162

8926b517

10 7月, 2004 1 次提交

load/save state support · 2c6ab832

由 bellard 提交于 7月 10, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@992 c046a42c-6fe2-441c-8c8c-71466251a162

2c6ab832

06 7月, 2004 1 次提交

24 bpp fixes · b30d4608

由 bellard 提交于 7月 06, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@984 c046a42c-6fe2-441c-8c8c-71466251a162

b30d4608

27 6月, 2004 1 次提交
- B
  dac write index register is r/w - CR1D access fix (Volker Ruppert) · ae184e4a
  由 bellard 提交于 6月 26, 2004
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@978 c046a42c-6fe2-441c-8c8c-71466251a162
```
  ae184e4a
22 6月, 2004 1 次提交

added PCI bus · 46e50e9d

由 bellard 提交于 6月 21, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@961 c046a42c-6fe2-441c-8c8c-71466251a162

46e50e9d

10 6月, 2004 1 次提交

pattern fill fixes and optimization · e69390ce

由 bellard 提交于 6月 09, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@917 c046a42c-6fe2-441c-8c8c-71466251a162

e69390ce

08 6月, 2004 2 次提交

set memory size to 4MB for 5446 - fixed memory size probe (aka Win2000 bug) -... · 78e127ef

由 bellard 提交于 6月 08, 2004

set memory size to 4MB for 5446 - fixed memory size probe (aka Win2000 bug) - fixed interlace support


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@914 c046a42c-6fe2-441c-8c8c-71466251a162

78e127ef

cirrus blitter fixes · 4c8732d7

由 bellard 提交于 6月 07, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@907 c046a42c-6fe2-441c-8c8c-71466251a162

4c8732d7

06 6月, 2004 3 次提交

hardware cursor support - fill with rop support - color expand and color... · a5082316

由 bellard 提交于 6月 06, 2004

hardware cursor support - fill with rop support - color expand and color expand with transparent support - various optimisations


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@902 c046a42c-6fe2-441c-8c8c-71466251a162

a5082316

better to use different ID for ISA and PCI · 20ba3ae1

由 bellard 提交于 6月 05, 2004


git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@901 c046a42c-6fe2-441c-8c8c-71466251a162

20ba3ae1

B
change ID to CLGD5446 - added solidfill support - fixed hidden dac access · a21ae81d
由 bellard 提交于 6月 05, 2004
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@899 c046a42c-6fe2-441c-8c8c-71466251a162
```
a21ae81d

05 6月, 2004 4 次提交
- B
  Cirrus fixes · aeb3c85f
  由 bellard 提交于 6月 05, 2004
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@898 c046a42c-6fe2-441c-8c8c-71466251a162
```
  aeb3c85f
- B
  avoid using anonymous struct extension (not supported by all gcc 3.x) · 4e3e9d0b
  由 bellard 提交于 6月 05, 2004
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@896 c046a42c-6fe2-441c-8c8c-71466251a162
```
  4e3e9d0b
- B
  mmio support for vga registers - line offset fix - (aka XFree86 4.3.0 fixes) · e36f36e1
  由 bellard 提交于 6月 05, 2004
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@894 c046a42c-6fe2-441c-8c8c-71466251a162
```
  e36f36e1
- B
  Cirrus VGA emulation (initial patch by Suzu - heavily modified for easier merge) · e6e5ad80
  由 bellard 提交于 6月 05, 2004
```
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@891 c046a42c-6fe2-441c-8c8c-71466251a162
```
  e6e5ad80