diff options
author | Mike DePaulo <mikedep333@gmail.com> | 2015-02-08 22:35:21 -0500 |
---|---|---|
committer | Mike Gabriel <mike.gabriel@das-netzwerkteam.de> | 2015-02-14 16:14:31 +0100 |
commit | ef439da38d3a4c00a4e03e7d8f83cb359cd9a230 (patch) | |
tree | 0e9f5f815230d07bff74d5e26a193e6a52fd61ed /nxcomp/ServerReadBuffer.h | |
parent | ece51493f1d970f45e53588e33a700464a42fbab (diff) | |
download | nx-libs-ef439da38d3a4c00a4e03e7d8f83cb359cd9a230.tar.gz nx-libs-ef439da38d3a4c00a4e03e7d8f83cb359cd9a230.tar.bz2 nx-libs-ef439da38d3a4c00a4e03e7d8f83cb359cd9a230.zip |
CVE-2014-0210: unvalidated length fields in fs_read_list() from xorg/lib/libXfont commit 5fa73ac18474be3032ee7af9c6e29deab163ea39
fs_read_list() parses a reply from the font server. The reply
contains a list of strings with embedded length fields, none of
which are validated. This can cause out of bound reads when looping
over the strings in the reply.
Diffstat (limited to 'nxcomp/ServerReadBuffer.h')
0 files changed, 0 insertions, 0 deletions