CVS commit: [netbsd-9] xsrc/external/mit/libX11/dist/src

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-9] xsrc/external/mit/libX11/dist/src
From: "Soren Jacobsen" <snj%netbsd.org@localhost>
Date: Tue, 20 Jun 2023 23:07:25 +0000

Module Name:    xsrc
Committed By:   snj
Date:           Tue Jun 20 23:07:25 UTC 2023

Modified Files:
        xsrc/external/mit/libX11/dist/src [netbsd-9]: InitExt.c

Log Message:
Apply patch (requested by mrg in ticket #1645):
InitExt.c: Add bounds checks for extension request, event, & error codes

Fixes CVE-2023-3138: X servers could return values from XQueryExtension
that would cause Xlib to write entries out-of-bounds of the arrays to
store them, though this would only overwrite other parts of the Display
struct, not outside the bounds allocated for that structure.


To generate a diff of this commit:
cvs rdiff -u -r1.1.1.7 -r1.1.1.7.4.1 \
    xsrc/external/mit/libX11/dist/src/InitExt.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-8] src/doc
Next by Date: CVS commit: src
Previous by Thread: CVS commit: [netbsd-8] src/doc
Next by Thread: CVS commit: src
Indexes:

Home | Main Index | Thread Index | Old Index