xenocara/lib/libXfixes
matthieu 269364ad66 Integer overflow on illegal server response
The 32 bit field "rep.length" is not checked for validity, which allows
an integer overflow on 32 bit systems.

A malicious server could send INT_MAX as length, which gets multiplied
by the size of XRectangle. In that case the client won't read the whole
data from server, getting out of sync.

From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016
2016-10-04 14:59:47 +00:00
..
include/X11/extensions Update to libXfixes 5.0.1 2013-05-31 14:57:02 +00:00
man Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
src Integer overflow on illegal server response 2016-10-04 14:59:47 +00:00
aclocal.m4 Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
AUTHORS
ChangeLog Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
compile Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
config.guess Merge upstream fixes for several X libs vulnerabilities 2013-05-23 22:42:07 +00:00
config.h.in Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
config.sub Merge upstream fixes for several X libs vulnerabilities 2013-05-23 22:42:07 +00:00
configure Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
configure.ac Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
COPYING
depcomp Merge upstream fixes for several X libs vulnerabilities 2013-05-23 22:42:07 +00:00
INSTALL Update to libXfixes 5.0.1 2013-05-31 14:57:02 +00:00
install-sh Merge upstream fixes for several X libs vulnerabilities 2013-05-23 22:42:07 +00:00
ltmain.sh Merge upstream fixes for several X libs vulnerabilities 2013-05-23 22:42:07 +00:00
Makefile.am Update to libXfixes 5.0.1 2013-05-31 14:57:02 +00:00
Makefile.bsd-wrapper Bump the major on every single base library. There are a couple 2013-08-13 07:07:07 +00:00
Makefile.in Update to libXfixes 5.0.2. No functional changes. 2016-08-06 09:51:36 +00:00
missing Merge upstream fixes for several X libs vulnerabilities 2013-05-23 22:42:07 +00:00
README
xfixes.pc.in

		Xfixes
	   XFIXES Extension
	    Version 2.0.1
	      2002-10-4

This package contains header files and documentation for the XFIXES
extension.  Library and server implementations are separate.

Keith Packard
keithp@keithp.com

All questions regarding this software should be directed at the
Xorg mailing list:

        http://lists.freedesktop.org/mailman/listinfo/xorg

Please submit bug reports to the Xorg bugzilla:

        https://bugs.freedesktop.org/enter_bug.cgi?product=xorg

The master development code repository can be found at:

        git://anongit.freedesktop.org/git/xorg/lib/libXfixes

        http://cgit.freedesktop.org/xorg/lib/libXfixes

For patch submission instructions, see:

	http://www.x.org/wiki/Development/Documentation/SubmittingPatches

For more information on the git code manager, see:

        http://wiki.x.org/wiki/GitPage