-
Mike DePaulo authored
CVE-2014-0210: unvalidated length fields in fs_read_glyphs() from xorg/lib/libXfont commit 520683652564c2a4e42328ae23eef9bb63271565 fs_read_glyphs() parses a reply from the font server. The reply contains embedded length fields, none of which are validated. This can cause out of bound reads when looping over the glyph bitmaps in the reply.
ece51493
| Name |
Last commit
|
Last update |
|---|---|---|
| .. | ||
| Imakefile | ||
| fsconvert.c | ||
| fserve.c | ||
| fserve.h | ||
| fservestr.h | ||
| fsio.c | ||
| fsio.h | ||
| fsio.h.NX.reference | ||
| fsio.h.XF86.reference | ||
| fslibos.h |