Skip to content

virgl: check buffer size to avoid unsigned wraparound

Make sure that the passed buffer size is not negative and that multiplying it with sizeof(uint32_t) doesn't overflow. With that we make sure that the buf_offset in the decoding loop can't wrap around when it is updated.

Edited by Gert Wollny

Merge request reports

Loading