record: Fix OOB access in ProcRecordUnregisterClients - ~tjaalton/xserver - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Tobias Stoeckmann <tobias@stoeckmann.org>	2017-03-19 17:55:07 +0100
committer	Olivier Fourdan <ofourdan@redhat.com>	2017-09-22 18:45:59 +0200
commit	e23000d83f8dbab4effd9f344f3d776634a1d56e (patch)
tree	1368a2452a1a80083edce2029da2ae06bae5c1df /fix-patch-whitespace
parent	3166138ea681537dbe164e2888ccb96bb022220b (diff)

record: Fix OOB access in ProcRecordUnregisterClients

If a client sends a RecordUnregisterClients request with an nClients field larger than INT_MAX / 4, an integer overflow leads to an out of boundary access in RecordSanityCheckClientSpecifiers. An example line with libXtst would be: XRecordUnregisterClients(dpy, rc, clients, 0x40000001); Reviewed-by: Adam Jackson <ajax@redhat.com> (cherry picked from commit 40c12a76c2ae57adefd3b1d412387ebbfe2fb784)

Diffstat (limited to 'fix-patch-whitespace')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: