libxt: Changes to 'debian-wheezy'
New branch 'debian-wheezy' available with the following commits:
commit 0730a626ee2d43e7c0b046a1e3cf165f96a77a9f
Author: Julien Cristau <jcristau@debian.org>
Date: Tue May 14 19:55:23 2013 +0200
Upload to wheezy-security
commit 30c6d426f7d135531d9ec6fbf63953db496dfa62
Author: Alan Coopersmith <alan.coopersmith@oracle.com>
Date: Sat Mar 9 11:44:14 2013 -0800
unvalidated length in _XtResourceConfigurationEH [CVE-2013-2002]
The RCM_DATA property is expected to be in the format:
resource_length, resource, value
If the property contains a resource_length thats results in a pointer
outside the property string, memory corruption can occur.
Reported-by: Ilja Van Sprundel <ivansprundel@ioactive.com>
Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Signed-off-by: Julien Cristau <jcristau@debian.org>
commit 29433820344c228580fe09316d6402bbbd7ba44a
Author: Alan Coopersmith <alan.coopersmith@oracle.com>
Date: Sat Mar 9 11:29:21 2013 -0800
Unchecked return values of XGetWindowProperty [CVE-2013-2005]
Multiple functions in Selection.c assumed that XGetWindowProperty() would
always set the pointer to the property, but before libX11 1.6, it could
fail to do so in some cases, leading to libXt freeing or operating on an
uninitialized pointer value, so libXt should always initialize the pointers
and check for failure itself.
Reported-by: Ilja Van Sprundel <ivansprundel@ioactive.com>
Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Signed-off-by: Julien Cristau <jcristau@debian.org>
Reply to: