On 04/06/2016 10:44 AM, Kim Woelders wrote: > On 04/02/2016 08:37 PM, Yuriy M. Kaminskiy wrote: >> Run `valgrind imlib2_test`, move mouse to right lower corner, got >> ==16086== Invalid read of size 1 >> ==16086== at 0x4E79C4E: __imlib_MergeUpdate (in >> /usr/lib/x86_64-linux-gnu/libImlib2.so.1.4.6) >> ==16086== by 0x401773: main (in /usr/bin/imlib2_test) >> ==16086== Address 0x9d20360 is 0 bytes after a block of size 1,200 >> alloc'd >> ==16086== at 0x4C28C20: malloc (vg_replace_malloc.c:296) >> ==16086== by 0x4E798E3: __imlib_MergeUpdate (in >> /usr/lib/x86_64-linux-gnu/libImlib2.so.1.4.6) >> ==16086== by 0x401773: main (in /usr/bin/imlib2_test) >> >> It is at src/lib/updates.c: >> |113| for (xx = x + 1, ww = 1; >> | >> >|114| (T(xx, y).used & T_USED) && (xx < tw); >> xx++,| >> |115| for (yy = y + 1, hh = 1, ok = 1; >> | >> >> xx is 20 and tw is 20, so T(xx, y) addresses one byte out of buffer. >> >> Two *alternative* patches attached (apply only *one* of them). >> TODO: I have not tried to search for similar pattern over codebase (yet). >> >> Debian-Bug: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819818 >> >> > First patch (reversed condition) looks good to me - committed. > > Thanks :) > > /Kim > > > > ------------------------------------------------------------------------------ > _______________________________________________ > enlightenment-devel mailing list > enlightenment-devel@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/enlightenment-devel >
Someone decided to assign this CVE-2016-3993 -- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adeliade Australia, UTC+9:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! http://pubads.g.doubleclick.net/ gampad/clk?id=1444514301&iu=/ca-pub-7940484522588532
_______________________________________________ enlightenment-devel mailing list enlightenment-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/enlightenment-devel
