diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2017-01-27 12:59:35 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-02-08 12:00:21 +0000 |
commit | 4f991d93f6221e72c3eea6080ec405155b680681 (patch) | |
tree | 5a9f83d59a6af669ab2e120f963d72adba699dbd /meta/COPYING.GPLv2 | |
parent | b45822fe666784c6588317e2cd1e0c411e564197 (diff) | |
download | poky-4f991d93f6221e72c3eea6080ec405155b680681.tar.gz |
libXrandr: fix for CVE-2016-7947 and CVE-2016-7948
CVE-2016-7947
Insufficient validation of server responses result in Integer overflows
CVE-2016-7948
Insufficient validation of server responses result in various data mishandlings
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7947
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7948
https://lists.x.org/archives/xorg-announce/2016-October/002720.html
Upstream patch for both CVEs:
https://cgit.freedesktop.org/xorg/lib/libXrandr/commit/?id=a0df3e1c7728205e5c7650b2e6dce684139254a6
(From OE-Core rev: 1c293e889f6eeae36f8f6ddd9676c65d613ad0fc)
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/COPYING.GPLv2')
0 files changed, 0 insertions, 0 deletions