CVS commit: [netbsd-9] xsrc/external/mit

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-9] xsrc/external/mit
From: "Martin Husemann" <martin%netbsd.org@localhost>
Date: Sun, 2 Aug 2020 09:01:44 +0000

Module Name:    xsrc
Committed By:   martin
Date:           Sun Aug  2 09:01:44 UTC 2020

Modified Files:
        xsrc/external/mit/xorg-server.old/dist/dix [netbsd-9]: pixmap.c
        xsrc/external/mit/xorg-server/dist/dix [netbsd-9]: pixmap.c

Log Message:
Pull up following revision(s) (requested by maya in ticket #1033):

        xsrc/external/mit/xorg-server/dist/dix/pixmap.c: revision 1.2
        xsrc/external/mit/xorg-server.old/dist/dix/pixmap.c: revision 1.2

Backport the only patch from xorg-server 1.20.9 as I can't find a tarball.

>From aac28e162e5108510065ad4c323affd6deffd816 Mon Sep 17 00:00:00 2001
From: Matthieu Herrb <matthieu%herrb.eu@localhost>
Date: Sat, 25 Jul 2020 19:33:50 +0200
Subject: [PATCH] fix for ZDI-11426

Avoid leaking un-initalized memory to clients by zeroing the
whole pixmap on initial allocation.

This vulnerability was discovered by:
Jan-Niklas Sohn working with Trend Micro Zero Day Initiative

Signed-off-by: Matthieu Herrb <matthieu%herrb.eu@localhost>
Reviewed-by: Alan Coopersmith <alan.coopersmith%oracle.com@localhost>


To generate a diff of this commit:
cvs rdiff -u -r1.1.1.1 -r1.1.1.1.4.1 \
    xsrc/external/mit/xorg-server.old/dist/dix/pixmap.c
cvs rdiff -u -r1.1.1.5 -r1.1.1.5.2.1 \
    xsrc/external/mit/xorg-server/dist/dix/pixmap.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src/usr.bin/make
Next by Date: CVS commit: src/usr.bin/make
Previous by Thread: CVS commit: src/usr.bin/make
Next by Thread: CVS commit: src/usr.bin/make
Indexes:

Home | Main Index | Thread Index | Old Index