openbsd/xenocara
1
0
Fork 0
mirror of https://github.com/openbsd/xenocara.git synced 2025-12-17 22:59:30 +00:00
Code Issues Projects Releases Wiki Activity

randr: avoid integer truncation in length check of ProcRRChange*Property

Browse Source 
CVE-2023-6478
This commit is contained in:
matthieu
2023-12-13 06:21:57 +00:00
parent 1df2839930
commit 679d2a4fc6
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
xserver/randr/rrproperty.c
View File

@@ -530,7 +530,7 @@ ProcRRChangeOutputProperty(ClientPtr client)
char format, mode; char format, mode;
unsigned long len; unsigned long len;
int sizeInBytes; int sizeInBytes;
int totalSize; uint64_t totalSize;
int err; int err;
REQUEST_AT_LEAST_SIZE(xRRChangeOutputPropertyReq); REQUEST_AT_LEAST_SIZE(xRRChangeOutputPropertyReq);

2
xserver/randr/rrproviderproperty.c
View File

@@ -498,7 +498,7 @@ ProcRRChangeProviderProperty(ClientPtr client)
char format, mode; char format, mode;
unsigned long len; unsigned long len;
int sizeInBytes; int sizeInBytes;
int totalSize; uint64_t totalSize;
int err; int err;
REQUEST_AT_LEAST_SIZE(xRRChangeProviderPropertyReq); REQUEST_AT_LEAST_SIZE(xRRChangeProviderPropertyReq);