summaryrefslogtreecommitdiff
path: root/xtst.pc.in
diff options
context:
space:
mode:
authorAlan Coopersmith <alan.coopersmith@oracle.com>2013-04-13 11:27:26 -0700
committerAlan Coopersmith <alan.coopersmith@oracle.com>2013-05-07 14:03:31 -0700
commite7e04b7be3f018ad636aba3a36bfc1cd80b9906d (patch)
treed3ac8f1a30b9ced67dbd38569a09a1aaa3fee1a2 /xtst.pc.in
parent46ed6283034b5b7d14584009453f5d974cfacf1e (diff)
integer overflow in XRecordGetContext() [CVE-2013-2063]
The nclients and nranges members of the reply are both CARD32 and need to be bounds checked before multiplying by the size of the structs to avoid integer overflow leading to underallocation and writing data from the network past the end of the allocated buffer. Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Diffstat (limited to 'xtst.pc.in')
0 files changed, 0 insertions, 0 deletions