Hide Forgot
An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format [1]. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service condition. [1] https://github.com/rfbproto/rfbproto/blob/master/rfbproto.rst#extended-clipboard-pseudo-encoding
Proposed patch: https://lists.nongnu.org/archive/html/qemu-devel/2022-09/msg03948.html
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 2129759]
Upstream commit: https://gitlab.com/qemu-project/qemu/-/commit/d307040b18