diff options
author | Julien Cristau <jcristau@debian.org> | 2014-10-28 10:30:04 +0100 |
---|---|---|
committer | Mike DePaulo <mikedep333@gmail.com> | 2015-05-24 19:02:56 -0400 |
commit | e469cff02d3093062ce9243185d55c516efdad0b (patch) | |
tree | 1a2ff09905c1f51c7fe52703239d803ea085388a /COPYING | |
parent | f7295831a0dd1b52fb68e41dd9e84e0850524835 (diff) | |
download | nx-libs-e469cff02d3093062ce9243185d55c516efdad0b.tar.gz nx-libs-e469cff02d3093062ce9243185d55c516efdad0b.tar.bz2 nx-libs-e469cff02d3093062ce9243185d55c516efdad0b.zip |
render: check request size before reading it [CVE-2014-8100 1/2]
Otherwise we may be reading outside of the client request.
v2: backport to nx-libs 3.6.x (Mike DePaulo)
v3: port to NXrender.c rather than render.c (Mike DePaulo)
Signed-off-by: Julien Cristau <jcristau@debian.org>
Reviewed-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Conflicts:
render/render.c
Diffstat (limited to 'COPYING')
0 files changed, 0 insertions, 0 deletions