On 03/27/14 00:41, Frédéric Basse wrote: > Hi, > > I've found some bugs in directfb source tree: >
Two CVE have been assigned : > * CWE-192: Integer Coercion Error > 'rect->w' is not explicitly unsigned. > => > http://git.directfb.org/?p=core/DirectFB.git;a=blob;f=proxy/dispatcher/idirectfbsurface_dispatcher.c;h=6e99cbba8a8430869b318936ed63a80f44b83201;hb=HEAD#l1735 > => > http://git.directfb.org/?p=core/DirectFB.git;a=blob;f=proxy/dispatcher/idirectfbsurface_dispatcher.c;h=6e99cbba8a8430869b318936ed63a80f44b83201;hb=HEAD#l1759 > Please use CVE-2014-2977. > > * CWE-787: Out-of-bounds Write > 'count' can exceed 'dst' buffer size. > => > http://git.directfb.org/?p=core/DirectFB.git;a=blob;f=proxy/dispatcher/idirectfbsurface_dispatcher.c;h=6e99cbba8a8430869b318936ed63a80f44b83201;hb=HEAD#l1676 > => > http://git.directfb.org/?p=core/DirectFB.git;a=blob;f=proxy/dispatcher/idirectfbsurface_dispatcher.c;h=6e99cbba8a8430869b318936ed63a80f44b83201;hb=HEAD#l1626 > Please use CVE-2014-2978. > And 'Dispatch_Read' function may also be worth a look... > > > Regards, > Frederic > > > _______________________________________________ > directfb-dev mailing list > directfb-dev@directfb.org > http://mail.directfb.org/cgi-bin/mailman/listinfo/directfb-dev >
signature.asc
Description: OpenPGP digital signature
_______________________________________________ directfb-dev mailing list directfb-dev@directfb.org http://mail.directfb.org/cgi-bin/mailman/listinfo/directfb-dev
