libX11: Changes to 'master'
GitLab Mirror
gitlab-mirror at kemper.freedesktop.org
Sat Jun 5 17:06:41 UTC 2021
README.md | 5 +++++
configure.ac | 2 +-
src/Font.c | 8 ++++----
src/LookupCol.c | 4 ++--
src/ParseCol.c | 10 +++++-----
src/SetFPath.c | 8 ++++----
6 files changed, 21 insertions(+), 16 deletions(-)
New commits:
commit f906fe8e9769e4313294b68e61c402610ade69da
Author: Alan Coopersmith <alan.coopersmith at oracle.com>
Date: Sat Jun 5 09:12:13 2021 -0700
libX11 1.7.2
Signed-off-by: Alan Coopersmith <alan.coopersmith at oracle.com>
commit 51b73ac0acda65005c8a9f17ca4ea7281b00ca84
Author: Tobias Stoeckmann <tobias at stoeckmann.org>
Date: Sun May 23 15:05:17 2021 +0200
Protect against overly long strings
Checking against upper limit of USHRT_MAX must happen before truncating
size_t to int. On 64 bit systems with strings larger than 2 GB this
could otherwise lead to negative ints or ints smaller than USHRT_MAX.
In XParseColor this could lead to out of boundary access with strings
starting with a # (color sequence). A modulo 12 operation is performed
to validate the string length, but with an overflown length, the for
loop would eventually read behind terminating '\0' character.
Signed-off-by: Tobias Stoeckmann <tobias at stoeckmann.org>
More information about the xorg-commit
mailing list