Subject: CVS commit: [netbsd-3-0] xsrc/xfree/xc
To: None <source-changes@NetBSD.org>
From: Geert Hendrickx <ghen@netbsd.org>
List: source-changes
Date: 04/04/2007 22:21:45
Module Name: xsrc
Committed By: ghen
Date: Wed Apr 4 22:21:45 UTC 2007
Modified Files:
xsrc/xfree/xc/lib/X11 [netbsd-3-0]: ImUtil.c
xsrc/xfree/xc/lib/font/bitmap [netbsd-3-0]: bdfread.c
xsrc/xfree/xc/lib/font/fontfile [netbsd-3-0]: fontdir.c
xsrc/xfree/xc/programs/Xserver/Xext [netbsd-3-0]: xcmisc.c
Log Message:
Pull up following revision(s) (requested by drochner in ticket #1752):
xfree/xc/lib/X11/ImUtil.c: revision 1.2
xfree/xc/lib/font/fontfile/fontdir.c: revision 1.2
xfree/xc/programs/Xserver/Xext/xcmisc.c: revision 1.2
xfree/xc/lib/font/bitmap/bdfread.c: revision 1.2
fix a possible memory corruption due to integer overflow in
ProcXCMiscGetXIDList()
(CVE-2007-1003)
fix a possible memory corruption due to integer overflow, caused by lack
of validation of bdf font files
(CVE 2007-1351)
fix a possible memory corruption due to integer overflow, caused by lack
of validation of fonts.dir files
(CVE 2007-1352)
fix a possible memory corruption due to incomplete input validation in
XInitImage()
(CVE 2007-1667)
To generate a diff of this commit:
cvs rdiff -r1.1.1.5 -r1.1.1.5.10.1 xsrc/xfree/xc/lib/X11/ImUtil.c
cvs rdiff -r1.1.1.6 -r1.1.1.6.10.1 xsrc/xfree/xc/lib/font/bitmap/bdfread.c
cvs rdiff -r1.1.1.7 -r1.1.1.7.10.1 xsrc/xfree/xc/lib/font/fontfile/fontdir.c
cvs rdiff -r1.1.1.5 -r1.1.1.5.10.1 \
xsrc/xfree/xc/programs/Xserver/Xext/xcmisc.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.