diff options
author | Mike DePaulo <mikedep333@gmail.com> | 2015-02-08 22:27:47 -0500 |
---|---|---|
committer | Mike Gabriel <mike.gabriel@das-netzwerkteam.de> | 2015-02-14 16:14:31 +0100 |
commit | ece51493f1d970f45e53588e33a700464a42fbab (patch) | |
tree | add4b33f526b0ff73a59bba3bafadf2ece8b79ba /debian/libnx-xtst6.install.in | |
parent | d2b96c5d59766f96181de95da1906fd6e32785ba (diff) | |
download | nx-libs-ece51493f1d970f45e53588e33a700464a42fbab.tar.gz nx-libs-ece51493f1d970f45e53588e33a700464a42fbab.tar.bz2 nx-libs-ece51493f1d970f45e53588e33a700464a42fbab.zip |
CVE-2014-0210: unvalidated length fields in fs_read_glyphs() from xorg/lib/libXfont commit 520683652564c2a4e42328ae23eef9bb63271565
fs_read_glyphs() parses a reply from the font server. The reply
contains embedded length fields, none of which are validated.
This can cause out of bound reads when looping over the glyph
bitmaps in the reply.
Diffstat (limited to 'debian/libnx-xtst6.install.in')
0 files changed, 0 insertions, 0 deletions