aboutsummaryrefslogtreecommitdiff
path: root/debian/copyright.in
diff options
context:
space:
mode:
authorMike DePaulo <mikedep333@gmail.com>2015-02-08 22:35:21 -0500
committerMike Gabriel <mike.gabriel@das-netzwerkteam.de>2015-02-14 16:14:31 +0100
commitef439da38d3a4c00a4e03e7d8f83cb359cd9a230 (patch)
tree0e9f5f815230d07bff74d5e26a193e6a52fd61ed /debian/copyright.in
parentece51493f1d970f45e53588e33a700464a42fbab (diff)
downloadnx-libs-ef439da38d3a4c00a4e03e7d8f83cb359cd9a230.tar.gz
nx-libs-ef439da38d3a4c00a4e03e7d8f83cb359cd9a230.tar.bz2
nx-libs-ef439da38d3a4c00a4e03e7d8f83cb359cd9a230.zip
CVE-2014-0210: unvalidated length fields in fs_read_list() from xorg/lib/libXfont commit 5fa73ac18474be3032ee7af9c6e29deab163ea39
fs_read_list() parses a reply from the font server. The reply contains a list of strings with embedded length fields, none of which are validated. This can cause out of bound reads when looping over the strings in the reply.
Diffstat (limited to 'debian/copyright.in')
0 files changed, 0 insertions, 0 deletions