Skip to content

N
nx-libs
Commit af55da1e authored by Mike DePaulo's avatar Mike DePaulo Committed by Mike Gabriel
Browse files
Options

LZW decompress: fix for CVE-2011-2895 From xorg/lib/Xfont commit…

LZW decompress: fix for CVE-2011-2895 From xorg/lib/Xfont commit d11ee5886e9d9ec610051a206b135a4cdc1e09a0 Specially crafted LZW stream can crash an application using libXfont that is used to open untrusted font files. With X server, this may allow privilege escalation when exploited
parent 902dc519
Show whitespace changes
Inline Side-by-side
Showing with 2 additions and 0 deletions
nx-X11/lib/font/fontfile/decompress.c
View file @ af55da1e
...@@ -261,6 +261,8 @@ BufCompressedFill (BufFilePtr f) ...@@ -261,6 +261,8 @@ BufCompressedFill (BufFilePtr f)
*/ */
while ( code >= 256 ) while ( code >= 256 )
{ {
if (stackp - de_stack >= STACK_SIZE - 1)
return BUFFILEEOF;
*stackp++ = file->tab_suffix[code]; *stackp++ = file->tab_suffix[code];
code = file->tab_prefix[code]; code = file->tab_prefix[code];
} }
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment