Check SetMap request length carefully

Graphics / X.Org / X.Org Server - Matthieu Herrb [herrb.eu] - 1 December 2020 14:28 UTC

Avoid out of bounds memory accesses on too short request.

ZDI-CAN 11572 / CVE-2020-14360

This vulnerability was discovered by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative

446ff2d31 Check SetMap request length carefully.
xkb/xkb.c | 92 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 92 insertions(+)

Upstream: cgit.freedesktop.org


  • Share