[
https://issues.apache.org/jira/browse/GUACAMOLE-1850?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Mike Jumper closed GUACAMOLE-1850.
----------------------------------
Fix Version/s: 1.5.4
Resolution: Fixed
> guac_common_cursor_dup() may segfault if cursor is being modified
> -----------------------------------------------------------------
>
> Key: GUACAMOLE-1850
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1850
> Project: Guacamole
> Issue Type: Bug
> Reporter: Mike Jumper
> Priority: Minor
> Fix For: 1.5.4
>
>
> The {{guac_common_cursor}} structure is written assuming that all access will
> already be threadsafe (such as existing access guarded by the
> {{guac_common_display}} lock), but {{guac_common_cursor}} is occasionally
> used outside the scope of any related locks (such as when handling inbound
> cursors from an RDP server). This results in a segfault/abort if that usage
> happens to occur while a {{guac_common_cursor_dup()}} call is underway.
> {{guac_common_cursor}} probably needs its own locks, similar to the issue
> with {{guac_common_clipboard}} that was addressed with:
> https://github.com/apache/guacamole-server/pull/178
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
