| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | CVE-2014-0209: integer overflow of realloc() size in FontFileAddEntry() from ↵ | Mike DePaulo | 2015-02-14 | 1 | -0/+5 |
| | | | | | | | | | | | | | | | | xorg/lib/libXfont commit 2f5e57317339c526e6eaee1010b0e2ab8089c42e FontFileReadDirectory() opens a fonts.dir file, and reads over every line in an fscanf loop. For each successful entry read (font name, file name) a call is made to FontFileAddFontFile(). FontFileAddFontFile() will add a font file entry (for the font name and file) each time it’s called, by calling FontFileAddEntry(). FontFileAddEntry() will do the actual adding. If the table it has to add to is full, it will do a realloc, adding 100 more entries to the table size without checking to see if that will overflow the int used to store the size. | ||||
| * | LZW decompress: fix for CVE-2011-2895 From xorg/lib/Xfont commit ↵ | Mike DePaulo | 2015-02-14 | 1 | -0/+2 |
| | | | | | | | | | d11ee5886e9d9ec610051a206b135a4cdc1e09a0 Specially crafted LZW stream can crash an application using libXfont that is used to open untrusted font files. With X server, this may allow privilege escalation when exploited | ||||
| * | drop .original files from the current code base | Mike Gabriel | 2015-02-02 | 2 | -1929/+0 |
| | | |||||
| * | Imported nx-X11-3.3.0-7.tar.gznx-X11/3.3.0-7 | Reinhard Tartler | 2011-10-10 | 3 | -1/+1933 |
| | | | | | | | | | Summary: Imported nx-X11-3.3.0-7.tar.gz Keywords: Imported nx-X11-3.3.0-7.tar.gz into Git repository | ||||
| * | Imported nx-X11-3.1.0-1.tar.gznx-X11/3.1.0-1 | Reinhard Tartler | 2011-10-10 | 21 | -0/+6884 |
| Summary: Imported nx-X11-3.1.0-1.tar.gz Keywords: Imported nx-X11-3.1.0-1.tar.gz into Git repository | |||||
 |
index : nx-libs | |
| NXv3 (redistributed) |
| aboutsummaryrefslogtreecommitdiff |