• Mike DePaulo's avatar
    CVE-2014-0210: unvalidated length fields in fs_read_glyphs() from… · ece51493
    Mike DePaulo authored
    CVE-2014-0210: unvalidated length fields in fs_read_glyphs() from xorg/lib/libXfont commit 520683652564c2a4e42328ae23eef9bb63271565
    
    fs_read_glyphs() parses a reply from the font server.  The reply
    contains embedded length fields, none of which are validated.
    This can cause out of bound reads when looping over the glyph
    bitmaps in the reply.
    ece51493
Name
Last commit
Last update
..
GL Loading commit data...
X11 Loading commit data...
XRes Loading commit data...
Xau Loading commit data...
Xcomposite Loading commit data...
Xcursor Loading commit data...
Xdamage Loading commit data...
Xdmcp Loading commit data...
Xext Loading commit data...
Xfixes Loading commit data...
Xinerama Loading commit data...
Xpm Loading commit data...
Xrandr Loading commit data...
Xrender Loading commit data...
Xtst Loading commit data...
Xxf86dga Loading commit data...
Xxf86misc Loading commit data...
Xxf86rush Loading commit data...
Xxf86vm Loading commit data...
font Loading commit data...
misc Loading commit data...
oldX Loading commit data...
xkbfile Loading commit data...
xkbui Loading commit data...
xtrans Loading commit data...
Imakefile Loading commit data...