rpms/xorg-x11-server/F-7 cve-2008-0006-server-fixup.patch,NONE,1.1
Dave Airlie (airlied)
fedora-extras-commits at redhat.com
Fri Jan 18 03:05:00 UTC 2008
Author: airlied
Update of /cvs/pkgs/rpms/xorg-x11-server/F-7
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31749
Added Files:
cve-2008-0006-server-fixup.patch
Log Message:
add missing file
cve-2008-0006-server-fixup.patch:
--- NEW FILE cve-2008-0006-server-fixup.patch ---
diff -up xorg-x11-6.8.2/xc/programs/Xserver/dix/dixfonts.c.jx xorg-x11-6.8.2/xc/programs/Xserver/dix/dixfonts.c
--- xorg-x11-6.8.2/xc/programs/Xserver/dix/dixfonts.c.jx 2004-04-23 15:04:44.000000000 -0400
+++ xorg-x11-server/dix/dixfonts.c 2008-01-14 11:15:00.000000000 -0500
@@ -339,6 +339,13 @@ doOpenFont(ClientPtr client, OFclosurePt
err = BadFontName;
goto bail;
}
+ /* check values for firstCol, lastCol, firstRow, and lastRow */
+ if (pfont->info.firstCol > pfont->info.lastCol ||
+ pfont->info.firstRow > pfont->info.lastRow ||
+ pfont->info.lastCol - pfont->info.firstCol > 255) {
+ err = AllocError;
+ goto bail;
+ }
if (!pfont->fpe)
pfont->fpe = fpe;
pfont->refcnt++;
More information about the fedora-extras-commits
mailing list