libxinerama: Changes to 'debian-wheezy'

To: debian-x@lists.debian.org
Subject: libxinerama: Changes to 'debian-wheezy'
From: Julien Cristau <jcristau@alioth.debian.org>
Date: Thu, 23 May 2013 18:59:05 +0000
Message-id: <E1UfajB-0002Gu-Vg@vasks.debian.org>

New branch 'debian-wheezy' available with the following commits:
commit 0a024e79b44f0c2800a33a5bed3e27b5a21b47c9
Author: Julien Cristau <jcristau@debian.org>
Date:   Tue May 14 16:49:22 2013 +0200

    Upload to wheezy-security

commit 0e1cc86e8fc9f56ac97a60ed22270b230207a1cf
Author: Alan Coopersmith <alan.coopersmith@oracle.com>
Date:   Fri Mar 8 19:55:55 2013 -0800

    integer overflow in XineramaQueryScreens() [CVE-2013-1985]
    
    If the reported number of screens is too large, the calculations to
    allocate memory for them may overflow, leaving us writing beyond the
    bounds of the allocation.
    
    Reported-by: Ilja Van Sprundel <ivansprundel@ioactive.com>
    Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
    Signed-off-by: Julien Cristau <jcristau@debian.org>

commit 8c1bc19660e55761b2418d0d12e63eec5e423932
Author: Alan Coopersmith <alan.coopersmith@oracle.com>
Date:   Sat May 4 09:21:14 2013 -0700

    Use _XEatDataWords to avoid overflow of _XEatData calculations
    
    rep.length is a CARD32, so rep.length << 2 could overflow in 32-bit builds
    
    Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
    Signed-off-by: Julien Cristau <jcristau@debian.org>

Reply to:

Prev by Date: libxi: Changes to 'debian-wheezy'
Next by Date: libxinerama: Changes to 'refs/tags/libxinerama-2_1.1.2-1+deb7u1'
Previous by thread: libxi: Changes to 'debian-wheezy'
Next by thread: libxinerama: Changes to 'refs/tags/libxinerama-2_1.1.2-1+deb7u1'
Index(es):
- Date
- Thread