]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 6d44213) | patch
libx11: CVE-2016-7943
authorSona Sarmadi <sona.sarmadi@enea.com>
Mon, 30 Jan 2017 11:46:23 +0000 (12:46 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 8 Feb 2017 12:00:01 +0000 (12:00 +0000)
commitd627e5bd50f66275cb3a77036ea3376a6f1e9a96
tree192cf2332b3f44b59eedc11d55b0a2afdd0008d1tree | snapshot
parent6d4421301a54c26e390fa943805574ced6e18c3acommit | diff
libx11: CVE-2016-7943

The XListFonts function in X.org libX11 before 1.6.4 might allow
remote X servers to gain privileges via vectors involving length
fields, which trigger out-of-bounds write operations.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7943
https://lists.x.org/archives/xorg-announce/2016-October/002720.html

Upstream patch:
https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8c29f1607a31dac0911e45a0dd3d74173822b3c9

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
meta/recipes-graphics/xorg-lib/libx11/CVE-2016-7943.patch [new file with mode: 0644] blob
meta/recipes-graphics/xorg-lib/libx11_1.6.3.bb diff | blob | history
Mirror of the official openembedded-core repository