These security issue is low severity and is similar with the
virtio-vga/virtio-gpu device. All of them can be triggered by
the guest user.
Li Qiang (7):
vhost-user-gpu: fix memory disclosure in virgl_cmd_get_capset_info
vhost-user-gpu: fix resource leak in 'vg_resource_create_2d'
vhost-user-gpu: fix memory leak in vg_resource_attach_backing
vhost-user-gpu: fix memory link while calling 'vg_resource_unref'
vhost-user-gpu: fix memory leak in 'virgl_cmd_resource_unref'
vhost-user-gpu: fix memory leak in 'virgl_resource_attach_backing'
vhost-user-gpu: fix OOB write in 'virgl_cmd_get_capset'
contrib/vhost-user-gpu/vhost-user-gpu.c | 7 +++++++
contrib/vhost-user-gpu/virgl.c | 17 ++++++++++++++++-
2 files changed, 23 insertions(+), 1 deletion(-)
--
The whole series looks good to me, and applies fixes that were done earlier in virtio-gpu.
Thanks