diff options
author | Alan Coopersmith <alan.coopersmith@oracle.com> | 2013-03-02 15:08:21 -0800 |
---|---|---|
committer | Ulrich Sibiller <uli42@gmx.de> | 2016-10-12 09:34:38 +0200 |
commit | 9501bce22ee691b8de707e6b8ffdbd7e7e71058c (patch) | |
tree | 9db26feec70d67802af360dc02c313e5865e66b5 /nxcompext/Rgb.c | |
parent | 361d36770ba3ceef0272e53c59c169f16f16ecf6 (diff) | |
download | nx-libs-9501bce22ee691b8de707e6b8ffdbd7e7e71058c.tar.gz nx-libs-9501bce22ee691b8de707e6b8ffdbd7e7e71058c.tar.bz2 nx-libs-9501bce22ee691b8de707e6b8ffdbd7e7e71058c.zip |
integer overflow in XGetImage() [CVE-2013-1981 11/13]
Ensure that we don't underallocate when the server claims to have sent a
very large reply.
Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Reviewed-by: Matthieu Herrb <matthieu.herrb@laas.fr>
Signed-off-by: Julien Cristau <jcristau@debian.org>
Backported-to-NX-by: Ulrich Sibiller <uli42@gmx.de>
Diffstat (limited to 'nxcompext/Rgb.c')
0 files changed, 0 insertions, 0 deletions