diff options
author | Mike DePaulo <mikedep333@gmail.com> | 2015-02-08 22:26:16 -0500 |
---|---|---|
committer | Mike Gabriel <mike.gabriel@das-netzwerkteam.de> | 2015-02-14 16:14:31 +0100 |
commit | d2b96c5d59766f96181de95da1906fd6e32785ba (patch) | |
tree | d1061d852276d10d5413da80dce1deada27873d8 /nxcomp/CopyArea.h | |
parent | a0bed4d9fce8ffc96f13ca13b95d2a7913d20719 (diff) | |
download | nx-libs-d2b96c5d59766f96181de95da1906fd6e32785ba.tar.gz nx-libs-d2b96c5d59766f96181de95da1906fd6e32785ba.tar.bz2 nx-libs-d2b96c5d59766f96181de95da1906fd6e32785ba.zip |
CVE-2014-0210: unvalidated length fields in fs_read_extent_info() from xorg/lib/libXfont commit a3f21421537620fc4e1f844a594a4bcd9f7e2bd8
Looping over the extents in the reply could go past the end of the
reply buffer if the reply indicated more extents than could fit in
the specified reply length.
Diffstat (limited to 'nxcomp/CopyArea.h')
0 files changed, 0 insertions, 0 deletions