OpenBSD / xenocara / BoRQQzT / MFC: Xi: integer overflow and unvalidated length in

OpenBSD/xenocara BoRQQzT — xserver/Xi xibarriers.c

2017-10-14 09:30:50 UTC by matthieu on ⎇

HEAD

🏷

OPENBSD_6_5_BASE
OPENBSD_6_4_BASE
OPENBSD_6_3_BASE

   MFC: Xi: integer overflow and unvalidated length in
        (S)ProcXIBarrierReleasePointer

   [jcristau: originally this patch fixed the same issue as commit
   211e05ac85 "Xi: Test exact size of XIBarrierReleasePointer", with the
   addition of these checks]

   This addresses CVE-2017-12179

Version	Delta		File
1.5	+5	-0	xserver/Xi/xibarriers.c
	+5	-0	1 files

Unified Split Raw