8c78881f 10/13/2010 09:38 pm Blue Swirl

cirrus: avoid write only variables

Compiling with GCC 4.6.0 20100925 produced a lot of warnings like:
In file included from /src/qemu/hw/cirrus_vga_rop.h:174:0,
from /src/qemu/hw/cirrus_vga.c:284:
/src/qemu/hw/cirrus_vga_rop2.h: In function 'cirrus_patternfill_0_8':...

4e12cd94 05/09/2009 12:11 am Avi Kivity

vga: Replace VGA_COMMON with a structure

All VGA devices share a common field subset; currently they do so by
a macro which defines the common fields inline their state structures,
relying on the the common state being placed at offset 0 in the structure....

b2eb849d 05/06/2008 12:26 am aurel32

CVE-2007-1320 - Cirrus LGD-54XX "bitblt" heap overflow

I have just noticed that patch for CVE-2007-1320 has never been applied
to the QEMU CVS. Please find it below.

| Multiple heap-based buffer overflows in the cirrus_invalidate_region | function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and...

5fafdf24 09/17/2007 12:08 am ths

find -type f | xargs sed -i 's/[\t ]$//g' # on most files

96cf2df8 08/01/2007 02:26 am ths

Cirrus transparent BITBLT (w/o color expand), by Hitoshi Osada.

a5082316 06/06/2004 06:16 pm bellard

hardware cursor support - fill with rop support - color expand and color expand with transparent support - various optimisations

