source-changes: CVS commit: xsrc

Subject: CVS commit: xsrc
To: None <source-changes@NetBSD.org>
From: Matthias Drochner <drochner@netbsd.org>
List: source-changes
Date: 04/03/2007 20:12:23

Module Name:	xsrc
Committed By:	drochner
Date:		Tue Apr  3 20:12:23 UTC 2007

Modified Files:
	xsrc/xfree/xc/lib/font/fontfile: fontdir.c
	xsrc/xorg/lib/Xfont/src/fontfile: fontdir.c

Log Message:
fix a possible memory corruption due to integer overflow, caused by lack
of validation of fonts.dir files
(CVE 2007-1352)


To generate a diff of this commit:
cvs rdiff -r1.1.1.7 -r1.2 xsrc/xfree/xc/lib/font/fontfile/fontdir.c
cvs rdiff -r1.1.1.1 -r1.2 xsrc/xorg/lib/Xfont/src/fontfile/fontdir.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.