Module Name: src
Committed By: martin
Date: Wed Aug 29 07:58:14 UTC 2018
Modified Files:
src/doc [netbsd-7-0]: CHANGES-7.0.3
Log Message:
Ticket #1635
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.110 -r1.1.2.111 src/doc/CHANGES-7.0.3
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-7.0.3
diff -u src/doc/CHANGES-7.0.3:1.1.2.110 src/doc/CHANGES-7.0.3:1.1.2.111
--- src/doc/CHANGES-7.0.3:1.1.2.110 Tue Aug 14 14:37:05 2018
+++ src/doc/CHANGES-7.0.3 Wed Aug 29 07:58:14 2018
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-7.0.3,v 1.1.2.110 2018/08/14 14:37:05 martin Exp $
+# $NetBSD: CHANGES-7.0.3,v 1.1.2.111 2018/08/29 07:58:14 martin Exp $
A complete list of changes from the NetBSD 7.0.2 release to the NetBSD 7.0.3
release:
@@ -5484,3 +5484,16 @@ sys/netinet6/frag6.c 1.64
Ignore zero-sized fragments.
[maxv, ticket #1630]
+xsrc/external/mit/libX11/dist/src/FontNames. (patch)
+xsrc/external/mit/libX11/dist/src/GetFPath.c (patch)
+xsrc/external/mit/libX11/dist/src/LiHosts.c (patch)
+xsrc/external/mit/libX11/dist/src/ListExt.c (patch)
+
+ Apply fixes from libX11 1.6.5 for the following vulnerabilities:
+ Fixed off-by-one writes (CVE-2018-14599)
+ Validation of server response in XListHosts
+ Fixed out of boundary write (CVE-2018-14600)
+ Fixed crash on invalid reply (CVE-2018-14598)
+ [mrg, ticket #1635]
+
+
