xcmisc: unvalidated length in SProcXCMiscGetXIDList() [CVE-2014-8096]

v2: backport to nx-libs 3.6.x (Mike DePaulo) Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com> Reviewed-by: Peter Hutterer <peter.hutterer@who-t.net>
author: Alan Coopersmith <alan.coopersmith@oracle.com> 2014-01-26 17:18:54 -0800
committer: Mike Gabriel <mike.gabriel@das-netzwerkteam.de> 2015-02-14 16:14:32 +0100
commit: 0d53194f7ef5980a7cd78950a4f3eb2b56e65746 (patch)
tree: cf2bf9b5ceabb49f2eca9070deb407cbf2b95531
parent: fde1375e373137ac52d0530b819bf9df64ab14c1 (diff)
download: nx-libs-0d53194f7ef5980a7cd78950a4f3eb2b56e65746.tar.gz
nx-libs-0d53194f7ef5980a7cd78950a4f3eb2b56e65746.tar.bz2
nx-libs-0d53194f7ef5980a7cd78950a4f3eb2b56e65746.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/nx-X11/programs/Xserver/Xext/xcmisc.c b/nx-X11/programs/Xserver/Xext/xcmisc.c
index c7bb72d9b..0a9a09069 100644
--- a/nx-X11/programs/Xserver/Xext/xcmisc.c
+++ b/nx-X11/programs/Xserver/Xext/xcmisc.c
@@ -228,6 +228,7 @@ SProcXCMiscGetXIDList(client)
 {
     register int n;
     REQUEST(xXCMiscGetXIDListReq);
+    REQUEST_SIZE_MATCH(xXCMiscGetXIDListReq);
 
     swaps(&stuff->length, n);
     swapl(&stuff->count, n);
author	Alan Coopersmith <alan.coopersmith@oracle.com>	2014-01-26 17:18:54 -0800
committer	Mike Gabriel <mike.gabriel@das-netzwerkteam.de>	2015-02-14 16:14:32 +0100
commit	0d53194f7ef5980a7cd78950a4f3eb2b56e65746 (patch)
tree	cf2bf9b5ceabb49f2eca9070deb407cbf2b95531
parent	fde1375e373137ac52d0530b819bf9df64ab14c1 (diff)
download	nx-libs-0d53194f7ef5980a7cd78950a4f3eb2b56e65746.tar.gz nx-libs-0d53194f7ef5980a7cd78950a4f3eb2b56e65746.tar.bz2 nx-libs-0d53194f7ef5980a7cd78950a4f3eb2b56e65746.zip