[odc] Daily X11 changes for 2007-04-28

ODC auto at squish.net
Sun Apr 29 08:01:14 BST 2007


OpenBSD X11 changes summary for 2007-04-28
==========================================

xc/extras                               xc/lib/X11
xc/lib/font                             xc/programs/Xserver

== xc ================================================================ 01/01 ==

  http://www.openbsd.org/cgi-bin/cvsweb/X11/xc

extras

  ~ freetype2/src/bdf/bdflib.c            

  TAGGED OPENBSD_4_1
  > Multiple security fixes for X.Org:
  > - XC-MISC CVE-2007-1003
  > XC-MISC Extension ProcXCMiscGetXIDList Memory Corruption
  > Vulnerability
  > This vulnerability was discovered by Sean Larsson, iDefense Labs.
  > - bdf CVE-2007-1351
  > BDFFont Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - fontdir CVE-2007-1352
  > fonts.dir File Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - libX11 CVE-2007-1667
  > Multiple integer overflows in the XGetPixel() and XInitImage functions
  > in ImUtil.c (ckuethe@)

lib/X11

  ~ ImUtil.c                              

  TAGGED OPENBSD_4_1
  > Multiple security fixes for X.Org:
  > - XC-MISC CVE-2007-1003
  > XC-MISC Extension ProcXCMiscGetXIDList Memory Corruption
  > Vulnerability
  > This vulnerability was discovered by Sean Larsson, iDefense Labs.
  > - bdf CVE-2007-1351
  > BDFFont Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - fontdir CVE-2007-1352
  > fonts.dir File Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - libX11 CVE-2007-1667
  > Multiple integer overflows in the XGetPixel() and XInitImage functions
  > in ImUtil.c (ckuethe@)

lib/font

  ~ bitmap/bdfread.c                      ~ fontfile/fontdir.c

  TAGGED OPENBSD_4_1
  > Multiple security fixes for X.Org:
  > - XC-MISC CVE-2007-1003
  > XC-MISC Extension ProcXCMiscGetXIDList Memory Corruption
  > Vulnerability
  > This vulnerability was discovered by Sean Larsson, iDefense Labs.
  > - bdf CVE-2007-1351
  > BDFFont Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - fontdir CVE-2007-1352
  > fonts.dir File Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - libX11 CVE-2007-1667
  > Multiple integer overflows in the XGetPixel() and XInitImage functions
  > in ImUtil.c (ckuethe@)

programs/Xserver

  ~ Xext/xcmisc.c                         

  TAGGED OPENBSD_4_1
  > Multiple security fixes for X.Org:
  > - XC-MISC CVE-2007-1003
  > XC-MISC Extension ProcXCMiscGetXIDList Memory Corruption
  > Vulnerability
  > This vulnerability was discovered by Sean Larsson, iDefense Labs.
  > - bdf CVE-2007-1351
  > BDFFont Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - fontdir CVE-2007-1352
  > fonts.dir File Parsing Integer Overflow Vulnerability
  > The discoverer of this vulnerability wishes to remain anonymous.
  > - libX11 CVE-2007-1667
  > Multiple integer overflows in the XGetPixel() and XInitImage functions
  > in ImUtil.c (ckuethe@)

===============================================================================



More information about the odc mailing list