Path to this page:
Subject: CVS commit: wip/libdmx
From: Thomas Klausner
Date: 2013-05-30 00:38:00
Message id: E1Uhp0c-0002SM-6C@sfs-ml-3.v29.ch3.sourceforge.com
Log Message:
Update to 1.1.3:
This bugfix release consists solely of the fixes for the overflows
recently reported under CVE-2013-1992.
Alan Coopersmith (5):
Use _XEatDataWords to avoid overflow of rep.length bit shifting
integer overflow in DMXGetScreenAttributes() [CVE-2013-1992 1/3]
integer overflow in DMXGetWindowAttributes() [CVE-2013-1992 2/3]
integer overflow in DMXGetInputAttributes() [CVE-2013-1992 3/3]
libdmx 1.1.3
Files: