aboutsummaryrefslogtreecommitdiff
path: root/debian
diff options
context:
space:
mode:
authorMike DePaulo <mikedep333@gmail.com>2015-02-08 22:27:47 -0500
committerMike Gabriel <mike.gabriel@das-netzwerkteam.de>2015-02-14 16:14:31 +0100
commitece51493f1d970f45e53588e33a700464a42fbab (patch)
treeadd4b33f526b0ff73a59bba3bafadf2ece8b79ba /debian
parentd2b96c5d59766f96181de95da1906fd6e32785ba (diff)
downloadnx-libs-ece51493f1d970f45e53588e33a700464a42fbab.tar.gz
nx-libs-ece51493f1d970f45e53588e33a700464a42fbab.tar.bz2
nx-libs-ece51493f1d970f45e53588e33a700464a42fbab.zip
CVE-2014-0210: unvalidated length fields in fs_read_glyphs() from xorg/lib/libXfont commit 520683652564c2a4e42328ae23eef9bb63271565
fs_read_glyphs() parses a reply from the font server. The reply contains embedded length fields, none of which are validated. This can cause out of bound reads when looping over the glyph bitmaps in the reply.
Diffstat (limited to 'debian')
0 files changed, 0 insertions, 0 deletions