Aurelien
/
xserver
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
xserver/os
History
Keith Packard 1559a94395 dix: GetHosts bounds check using wrong pointer value [CVE-2014-8092 pt. 6] 
GetHosts saves the pointer to allocated memory in *data, and then
wants to bounds-check writes to that region, but was mistakenly using
a bare 'data' instead of '*data'. Also, data is declared as void **,
so we need a cast to turn it into a byte pointer so we can actually do
pointer comparisons.

Signed-off-by: Keith Packard <keithp@keithp.com>
Reviewed-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
 		2014-12-09 11:30:52 -08:00
..
.gitignore
Makefile.am Trap SIGBUS to handle truncated shared memory segments 2013-11-11 15:16:07 -08:00
WaitFor.c Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
access.c dix: GetHosts bounds check using wrong pointer value [CVE-2014-8092 pt. 6] 2014-12-09 11:30:52 -08:00
auth.c os: Clean up warnings 2014-01-12 10:14:49 -08:00
backtrace.c
busfault.c Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
client.c
connection.c Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
io.c Fix overflow of ConnectionOutput->size and ->count 2014-11-30 11:37:56 -08:00
log.c os: "Server terminated successfully" is not an error 2014-11-30 11:35:02 -08:00
mitauth.c
oscolor.c Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
osdep.h Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
osinit.c Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
rpcauth.c unchecked malloc may allow unauthed client to crash Xserver [CVE-2014-8091] 2014-12-08 18:09:46 -08:00
strcasecmp.c
strcasestr.c
strlcat.c
strlcpy.c
strndup.c
utils.c If fork fails in System(), don't fallthrough to exec() 2014-10-23 17:32:14 -07:00
xdmauth.c os: Fix -Wshadow errors 2014-01-22 19:56:31 -08:00
xdmcp.c Drop trailing whitespaces 2014-11-12 10:25:00 +10:00
xprintf.c
xsha1.c
xstrans.c