libICE: Changes to 'master'
Peter Hutterer
whot at kemper.freedesktop.org
Mon Apr 24 01:09:51 UTC 2017
configure.ac | 2 -
src/iceauth.c | 65 +++++++++++++++++++++++++++++++++++++++++-----------------
2 files changed, 47 insertions(+), 20 deletions(-)
New commits:
commit ff5e59f32255913bb1cdf51441b98c9107ae165b
Author: Benjamin Tissoires <benjamin.tissoires at gmail.com>
Date: Tue Apr 4 19:12:53 2017 +0200
Use getentropy() if arc4random_buf() is not available
This allows to fix CVE-2017-2626 on Linux platforms without pulling in
libbsd.
The libc getentropy() is available since glibc 2.25 but also on OpenBSD.
For Linux, we need at least a v3.17 kernel. If the recommended
arc4random_buf() function is not available, emulate it by first trying
to use getentropy() on a supported glibc and kernel. If the call fails,
fall back to the current (partly vulnerable) code.
Signed-off-by: Benjamin Tissoires <benjamin.tissoires at gmail.com>
Reviewed-by: Mark Kettenis <kettenis at openbsd.org>
Reviewed-by: Alan Coopersmith <alan.coopersmith at oracle.com>
Signed-off-by: Peter Hutterer <peter.hutterer at who-t.net>
More information about the xorg-commit
mailing list