From e854723aa3817be6777260434024e2c1832256d3 Mon Sep 17 00:00:00 2001
From: Geoffrey McRae <geoff@hostfission.com>
Date: Sat, 30 Dec 2017 13:48:32 +1100
Subject: [PATCH] [client] fixed incorrect cursor dataPos validation

---
 client/main.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/client/main.c b/client/main.c
index 4cc5e869..2cf6a94e 100644
--- a/client/main.c
+++ b/client/main.c
@@ -234,7 +234,7 @@ int cursorThread(void * unused)
         break;
 
       // check the data position is sane
-      const uint64_t dataSize = header.detail.frame.height * header.detail.frame.pitch;
+      const uint64_t dataSize = header.detail.cursor.height * header.detail.cursor.pitch;
       if (header.detail.cursor.dataPos + dataSize > state.shmSize)
       {
         DEBUG_ERROR("The guest sent an invalid mouse dataPos");