Skip to content
Commit c77cd08e authored by Nathan Kidd's avatar Nathan Kidd Committed by Adam Jackson
Browse files

Xi: integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer 



[jcristau: originally this patch fixed the same issue as commit
 211e05ac "Xi: Test exact size of XIBarrierReleasePointer", with the
 addition of these checks]

This addresses CVE-2017-12179

Reviewed-by: default avatarAlan Coopersmith <alan.coopersmith@oracle.com>
Reviewed-by: default avatarJeremy Huddleston Sequoia <jeremyhu@apple.com>
Reviewed-by: default avatarJulien Cristau <jcristau@debian.org>
Signed-off-by: default avatarJeremy Huddleston Sequoia <jeremyhu@apple.com>
Signed-off-by: default avatarNathan Kidd <nkidd@opentext.com>
Signed-off-by: default avatarJulien Cristau <jcristau@debian.org>
(cherry picked from commit d088e3c1)
parent d264da92
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment