fdo-mirrors/mesa
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/mesa/mesa.git synced 2026-05-18 18:08:15 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
mesa/src/glx
History
Alan Coopersmith 306f630e67 integer overflow in XF86DRIGetClientDriverName() [CVE-2013-1993 2/2] 
clientDriverNameLength is a CARD32 and needs to be bounds checked before
adding one to it to come up with the total size to allocate, to avoid
integer overflow leading to underallocation and writing data from the
network past the end of the allocated buffer.

NOTE: This is a candidate for stable release branches.

Reported-by: Ilja Van Sprundel <ivansprundel@ioactive.com>
Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Reviewed-by: Brian Paul <brianp@vmware.com>
2013-05-30 18:03:45 -07:00
..
apple build: Rename sources.mak -> Makefile.sources 2013-04-15 12:04:25 -07:00
tests tests: AM_CPPFLAGS must include $(top_srcdir) instead of $(top_builddir). 2013-01-13 12:38:38 +01:00
.gitignore Clean up .gitignore files 2013-01-10 22:01:31 +01:00
applegl_glx.c Use calloc instead of malloc/memset-0 2012-09-05 22:28:50 -07:00
clientattrib.c Don't cast the return value of malloc/realloc 2012-09-05 22:28:50 -07:00
clientinfo.c Remove Xcalloc/Xmalloc/Xfree calls 2012-09-05 22:28:49 -07:00
compsize.c Have __glImageSize handle format GL_DEPTH_STENCIL_NV the same way as the server does 2012-02-06 23:00:44 +00:00
create_context.c mesa: Require current libxcb. 2012-07-12 12:29:12 -07:00
dri2.c glx: Replace DRI2SwapBuffers() custom protocol with XCB. 2012-10-09 14:32:03 -07:00
dri2.h glx: Replace DRI2SwapBuffers() custom protocol with XCB. 2012-10-09 14:32:03 -07:00
dri2_glx.c DRI2: HACK: no GLX_INTEL_swap_event if no ScheduleSwap 2013-03-18 14:16:43 -04:00
dri_common.c Remove Xcalloc/Xmalloc/Xfree calls 2012-09-05 22:28:49 -07:00
dri_common.h glx/dri2: Add support for GLX_ARB_create_context_robustness 2012-07-11 08:54:50 -07:00
dri_glx.c glx: move the glFlush call one layer down 2012-12-02 00:15:00 +01:00
drisw_glx.c glx: move the glFlush call one layer down 2012-12-02 00:15:00 +01:00
eval.c Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
glx_error.c glx: Deliver an xlib style error to the application from an XCB error 2011-12-23 08:40:30 -08:00
glx_error.h glx: Deliver an xlib style error to the application from an XCB error 2011-12-23 08:40:30 -08:00
glx_pbuffer.c glx: Fix glXCreateWindow() when GLX_DIRECT_RENDERING is undefined 2013-02-27 13:36:19 -05:00
glx_query.c glx: Unifdef USE_XCB. 2012-10-09 14:32:02 -07:00
glxclient.h glx: move the glFlush call one layer down 2012-12-02 00:15:00 +01:00
glxcmds.c Honor GLX_DONT_CARE in MATCH_MASK 2013-04-05 14:32:45 -07:00
glxconfig.c Don't cast the return value of malloc/realloc 2012-09-05 22:28:50 -07:00
glxconfig.h glx/dri: add initial dri interface for GLX_EXT_framebuffer_sRGB. 2011-03-06 20:06:42 +10:00
glxcurrent.c build: Use AX_PTHREAD's HAVE_PTHREAD preprocessor definition 2012-10-01 15:23:04 -07:00
glxext.c glx: Set sRGBCapable to a default value 2012-10-29 09:55:15 -07:00
glxextensions.c glx: Add the extension string for GLX_ARB_framebuffer_sRGB 2012-10-29 09:55:23 -07:00
glxextensions.h glx: Add the extension string for GLX_ARB_framebuffer_sRGB 2012-10-29 09:55:23 -07:00
glxhash.c Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
glxhash.h Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
indirect_glx.c Replace another malloc/memset-0 combination with calloc 2012-09-05 22:28:50 -07:00
indirect_init.h glx: Rename __GLXcontext and __GLXdisplayPrivate to struct types. 2010-07-28 16:45:25 -04:00
indirect_texture_compression.c mesa: Standardize names of OpenGL functions. 2012-11-12 10:53:57 -08:00
indirect_transpose_matrix.c mesa: Standardize names of OpenGL functions. 2012-11-12 10:53:57 -08:00
indirect_vertex_array.c mesa: Standardize names of OpenGL functions. 2012-11-12 10:53:57 -08:00
indirect_vertex_array.h Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
indirect_vertex_array_priv.h Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
indirect_vertex_program.c mesa: Standardize names of OpenGL functions. 2012-11-12 10:53:57 -08:00
indirect_window_pos.c mesa: Standardize names of OpenGL functions. 2012-11-12 10:53:57 -08:00
Makefile.am glx: Build with VISIBILITY_CFLAGS in automake 2013-03-21 13:21:18 -04:00
packrender.h glx: Rename __GLXcontext and __GLXdisplayPrivate to struct types. 2010-07-28 16:45:25 -04:00
packsingle.h glx: Rename __GLXcontext and __GLXdisplayPrivate to struct types. 2010-07-28 16:45:25 -04:00
pixel.c glx: Rename __GLXcontext and __GLXdisplayPrivate to struct types. 2010-07-28 16:45:25 -04:00
pixelstore.c glx: Rename __GLXcontext and __GLXdisplayPrivate to struct types. 2010-07-28 16:45:25 -04:00
render2.c Don't cast the return value of malloc/realloc 2012-09-05 22:28:50 -07:00
renderpix.c Don't cast the return value of malloc/realloc 2012-09-05 22:28:50 -07:00
SConscript scons: Fix dependencies of generated headers. 2013-01-21 19:10:54 +00:00
single2.c glx: Unifdef USE_XCB. 2012-10-09 14:32:02 -07:00
singlepix.c Don't cast the return value of malloc/realloc 2012-09-05 22:28:50 -07:00
vertarr.c glx: Rename __GLXcontext and __GLXdisplayPrivate to struct types. 2010-07-28 16:45:25 -04:00
XF86dri.c integer overflow in XF86DRIGetClientDriverName() [CVE-2013-1993 2/2] 2013-05-30 18:03:45 -07:00
xf86dri.h Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
xf86dristr.h Retire miniglx and move the actual glx code up to src/glx 2010-02-09 09:58:36 -05:00
xfont.c mesa: Restore 78-column wrapping of license text in C-style comments. 2013-04-23 22:07:09 -07:00