Bug#774308: Additional Information

To: 774308@bugs.debian.org
Subject: Bug#774308: Additional Information
From: Andreas Cord-Landwehr <cordlandwehr@kde.org>
Date: Fri, 02 Jan 2015 15:06:55 +0100
Message-id: <[🔎] 3294679.iryfifdNr3@worblehat>
Reply-to: Andreas Cord-Landwehr <cordlandwehr@kde.org>, 774308@bugs.debian.org

If I see it corretly, this crash is connected to the patch for [CVE-2014-8092 
1/4], since the corresponding patch [1] adds this line 1959:

if (lengthProto >= (INT32_MAX / stuff->height))

which causes the arithmetic exception for me. I could try hotfixing it locally 
by checking for "stuff->height != 0".

As I am not familiar with this code, any opinions if this is a good idea?

Cheers,
Andreas

[1] 
http://cgit.freedesktop.org/xorg/xserver/commit/?id=eeae42d60bf3d5663ea088581f6c28a82cd17829

Reply to:

Prev by Date: Processed: your mail
Next by Date: Bug#774308: Explicitly allow zero-height PutImage
Previous by thread: Processed: your mail
Next by thread: Bug#774308: Explicitly allow zero-height PutImage
Index(es):
- Date
- Thread