]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 1c293e8) | patch
libX11: CVE-2016-7942
authorSona Sarmadi <sona.sarmadi@enea.com>
Mon, 30 Jan 2017 11:46:22 +0000 (12:46 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 8 Feb 2017 12:00:00 +0000 (12:00 +0000)
commit6d4421301a54c26e390fa943805574ced6e18c3a
tree95d7174fb7fe4986df0edcd8c9d15bc0ffdbd98ftree | snapshot
parent1c293e889f6eeae36f8f6ddd9676c65d613ad0fccommit | diff
libX11: CVE-2016-7942

The XGetImage function in X.org libX11 before 1.6.4 might allow remote X
servers to gain privileges via vectors involving image type and geometry,
which triggers out-of-bounds read operations.

References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7942
Upstream patch
https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8ea762f94f4c942d898fdeb590a1630c83235c17

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
meta/recipes-graphics/xorg-lib/libx11/CVE-2016-7942.patch [new file with mode: 0644] blob
meta/recipes-graphics/xorg-lib/libx11_1.6.3.bb diff | blob | history
Mirror of the official openembedded-core repository