nx-X11/lib/font/fc · ef439da38d3a4c00a4e03e7d8f83cb359cd9a230 · dimbor / nx-libs

CVE-2014-0210: unvalidated length fields in fs_read_list() from… · ef439da3

authored Feb 08, 2015

CVE-2014-0210: unvalidated length fields in fs_read_list() from xorg/lib/libXfont commit 5fa73ac18474be3032ee7af9c6e29deab163ea39

fs_read_list() parses a reply from the font server. The reply
contains a list of strings with embedded length fields, none of
which are validated. This can cause out of bound reads when looping
over the strings in the reply.

ef439da3

Name	Last commit	Last update
..
Imakefile		Loading commit data...
fsconvert.c		Loading commit data...
fserve.c		Loading commit data...
fserve.h		Loading commit data...
fservestr.h		Loading commit data...
fsio.c		Loading commit data...
fsio.h		Loading commit data...
fsio.h.NX.reference		Loading commit data...
fsio.h.XF86.reference		Loading commit data...
fslibos.h		Loading commit data...