Request 1098803: Submit libX11 - openSUSE Build Service

Overview

Request 1098803 accepted

- update to 1.8.6:
* InitExt.c: Add bounds checks for extension request,
event, & error codes
* Fixes CVE-2023-3138: X servers could return values from
XQueryExtension that would cause Xlib to write entries
out-of-bounds of the arrays to store them, though this
would only overwrite other parts of the Display
struct, not outside the bounds allocated for that
structure.
- drop U_InitExt.c-Add-bounds-checks-for-extension-request-ev.patch (upstream)

Created by dirkmueller 11 months ago
In state accepted
4 package maintainers

Submit libX11

Comments for request 1098803 0

Login required, please login in order to comment

Request History

dirkmueller created request 11 months ago

- update to 1.8.6:
* InitExt.c: Add bounds checks for extension request,
event, & error codes
* Fixes CVE-2023-3138: X servers could return values from
XQueryExtension that would cause Xlib to write entries
out-of-bounds of the arrays to store them, though this
would only overwrite other parts of the Display
struct, not outside the bounds allocated for that
structure.
- drop U_InitExt.c-Add-bounds-checks-for-extension-request-ev.patch (upstream)

sndirsch accepted request 11 months ago

Thanks!

openSUSE Build Service is sponsored by