Hello community, here is the log from the commit of package xorg-x11-libs for openSUSE:11.4 checked in at Mon Sep 5 17:40:47 CEST 2011.
-------- --- old-versions/11.4/all/xorg-x11-libs/xorg-x11-libs.changes 2010-12-21 04:20:41.000000000 +0100 +++ 11.4/xorg-x11-libs/xorg-x11-libs.changes 2011-09-02 16:49:54.000000000 +0200 @@ -1,0 +2,6 @@ +Fri Sep 2 14:39:18 UTC 2011 - sndir...@suse.com + +- U_libXfont_LZW-decompress-fix-for-CVE-2011-2895.patch + * LZW decompress: fix for CVE-2011-2895 (bnc #709851) + +------------------------------------------------------------------- Package does not exist at destination yet. Using Fallback old-versions/11.4/all/xorg-x11-libs Destination is old-versions/11.4/UPDATES/all/xorg-x11-libs calling whatdependson for 11.4-i586 New: ---- U_libXfont_LZW-decompress-fix-for-CVE-2011-2895.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ xorg-x11-libs.spec ++++++ --- /var/tmp/diff_new_pack.I3vLzg/_old 2011-09-05 17:39:54.000000000 +0200 +++ /var/tmp/diff_new_pack.I3vLzg/_new 2011-09-05 17:39:54.000000000 +0200 @@ -1,7 +1,7 @@ # -# spec file for package xorg-x11-libs (Version 7.6) +# spec file for package xorg-x11-libs # -# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -34,7 +34,7 @@ # Url: http://xorg.freedesktop.org/ Version: 7.6 -Release: 1 +Release: 17.<RELEASE18> License: GPLv2+ ; MIT License (or similar) BuildRoot: %{_tmppath}/%{name}-%{version}-build Group: System/Libraries @@ -74,6 +74,7 @@ Patch5: libxkbui.diff Patch10: libXxf86misc-xcb.diff Patch21: libXTrap-pcfix.diff +Patch22: U_libXfont_LZW-decompress-fix-for-CVE-2011-2895.patch %description This package contains the remaining X.Org libraries. @@ -230,6 +231,9 @@ pushd libXTrap-* %patch21 -p1 popd +pushd libXfont-* +%patch22 -p1 +popd %build for dir in $(ls); do ++++++ U_libXfont_LZW-decompress-fix-for-CVE-2011-2895.patch ++++++ >From d11ee5886e9d9ec610051a206b135a4cdc1e09a0 Mon Sep 17 00:00:00 2001 From: Thomas Hoger <tho...@redhat.com> Date: Mon, 8 Aug 2011 18:03:09 +0200 Subject: [PATCH] LZW decompress: fix for CVE-2011-2895 Specially crafted LZW stream can crash an application using libXfont that is used to open untrusted font files. With X server, this may allow privilege escalation when exploited Reviewed-by: Matthieu Herrb <matthieu.he...@laas.fr> Signed-off-by: Matthieu Herrb <matthieu.he...@laas.fr> Signed-off-by: Alan Coopersmith <alan.coopersm...@oracle.com> --- src/fontfile/decompress.c | 2 ++ 1 files changed, 2 insertions(+), 0 deletions(-) diff --git a/src/fontfile/decompress.c b/src/fontfile/decompress.c index b1fc37b..c8171dd 100644 --- a/src/fontfile/decompress.c +++ b/src/fontfile/decompress.c @@ -259,6 +259,8 @@ BufCompressedFill (BufFilePtr f) */ while ( code >= 256 ) { + if (stackp - de_stack >= STACK_SIZE - 1) + return BUFFILEEOF; *stackp++ = file->tab_suffix[code]; code = file->tab_prefix[code]; } -- 1.7.4.1 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
