diff options
author | Mike DePaulo <mikedep333@gmail.com> | 2015-02-08 20:12:25 -0500 |
---|---|---|
committer | Mike Gabriel <mike.gabriel@das-netzwerkteam.de> | 2015-02-14 16:14:31 +0100 |
commit | ac6694378e0ed4bdffa6e1318c9d4beda24a6b0e (patch) | |
tree | 5380ce8ed7946e03fa9ec93542ae407a324c8169 /nx-X11/lib/font/bitmap | |
parent | 72790a55862f9a2232ba0cd7b072bbe3887cd820 (diff) | |
download | nx-libs-ac6694378e0ed4bdffa6e1318c9d4beda24a6b0e.tar.gz nx-libs-ac6694378e0ed4bdffa6e1318c9d4beda24a6b0e.tar.bz2 nx-libs-ac6694378e0ed4bdffa6e1318c9d4beda24a6b0e.zip |
CVE-2013-6462: unlimited sscanf overflows stack buffer in bdfReadCharacters() from xorg/lib/libXfont http://lists.x.org/archives/xorg-announce/2014-January/002389.html
Fixes cppcheck warning:
[lib/libXfont/src/bitmap/bdfread.c:341]: (warning)
scanf without field width limits can crash with huge input data.
Diffstat (limited to 'nx-X11/lib/font/bitmap')
-rw-r--r-- | nx-X11/lib/font/bitmap/bdfread.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nx-X11/lib/font/bitmap/bdfread.c b/nx-X11/lib/font/bitmap/bdfread.c index a6f0c1e7e..bccabd7df 100644 --- a/nx-X11/lib/font/bitmap/bdfread.c +++ b/nx-X11/lib/font/bitmap/bdfread.c @@ -344,7 +344,7 @@ bdfReadCharacters(FontFilePtr file, FontPtr pFont, bdfFileState *pState, char charName[100]; int ignore; - if (sscanf((char *) line, "STARTCHAR %s", charName) != 1) { + if (sscanf((char *) line, "STARTCHAR %99s", charName) != 1) { bdfError("bad character name in BDF file\n"); goto BAILOUT; /* bottom of function, free and return error */ } |