New branch 'debian-wheezy' available with the following commits: commit b6ac53aac1d2822139f0fe283ffcfd9ece27843f Author: Julien Cristau <jcris...@debian.org> Date: Wed May 15 21:19:38 2013 +0200
Upload to wheezy-security commit b5ddbb414a1cdd456ab3077dc566e7c4a2835900 Author: Alan Coopersmith <alan.coopersm...@oracle.com> Date: Fri Apr 26 16:33:03 2013 -0700 integer overflow in XF86DRIGetClientDriverName() [CVE-2013-1993 2/2] clientDriverNameLength is a CARD32 and needs to be bounds checked before adding one to it to come up with the total size to allocate, to avoid integer overflow leading to underallocation and writing data from the network past the end of the allocated buffer. Reported-by: Ilja Van Sprundel <ivansprun...@ioactive.com> Signed-off-by: Alan Coopersmith <alan.coopersm...@oracle.com> Signed-off-by: Julien Cristau <jcris...@debian.org> commit 7acbf13aa7d1a2a0af734a551721125ab58ac320 Author: Alan Coopersmith <alan.coopersm...@oracle.com> Date: Fri Apr 26 16:31:58 2013 -0700 integer overflow in XF86DRIOpenConnection() [CVE-2013-1993 1/2] busIdStringLength is a CARD32 and needs to be bounds checked before adding one to it to come up with the total size to allocate, to avoid integer overflow leading to underallocation and writing data from the network past the end of the allocated buffer. Reported-by: Ilja Van Sprundel <ivansprun...@ioactive.com> Signed-off-by: Alan Coopersmith <alan.coopersm...@oracle.com> Signed-off-by: Julien Cristau <jcris...@debian.org> -- To UNSUBSCRIBE, email to debian-x-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1ufaom-0007fg...@vasks.debian.org