[ANNOUNCE] libXrender 0.9.8

Alan Coopersmith alan.coopersmith at oracle.com
Thu Jun 13 22:44:56 PDT 2013


libXrender is the Xlib-based client API for the Render extension.

This bugfix release delivers the fixes for the recently announced security
issue CVE-2013-1987.

Adam Jackson (1):
      configure: Remove AM_MAINTAINER_MODE

Alan Coopersmith (5):
      Use _XEatDataWords to avoid overflow of rep.length bit shifting
      integer overflow in XRenderQueryFilters() [CVE-2013-1987 1/3]
      integer overflow in XRenderQueryFormats() [CVE-2013-1987 2/3]
      integer overflow in XRenderQueryPictIndexValues() [CVE-2013-1987 3/3]
      libXrender 0.9.8

Colin Walters (1):
      autogen.sh: Implement GNOME Build API

git tag: libXrender-0.9.8

http://xorg.freedesktop.org/archive/individual/lib/libXrender-0.9.8.tar.bz2
MD5:  2bd9a15fcf64d216e63b8d129e4f1f1c
SHA1: 0f5c843410029944bd06e19366db4932cf5944fa
SHA256: 1d14b02f0060aec5d90dfdcf16a996f17002e515292906ed26e3dcbba0f4fc62

http://xorg.freedesktop.org/archive/individual/lib/libXrender-0.9.8.tar.gz
MD5:  8be1c51f4425529617a5a43d5d192a31
SHA1: 6fa642737be327cd7166995a626d429669e16a76
SHA256: c3acffff4cd5c91585e8c4fdf1ec29fc234482f661ed548112b4d52db19963d1

-- 
	-Alan Coopersmith-              alan.coopersmith at oracle.com
	 Oracle Solaris Engineering - http://blogs.oracle.com/alanc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <http://lists.x.org/archives/xorg-announce/attachments/20130613/30d9e552/attachment.pgp>


More information about the xorg-announce mailing list