Viewing all changes in revision 17.
- Committer: Package Import Robot
- Date: 2015-10-07 07:23:38 UTC
- Revision ID: package-import@ubuntu.com-20151007072338-rxp3lpd3v3ignhdb
* Non-maintainer upload.
* Add series of patches for CVE-2015-5260 and CVE-2015-6261.
CVE-2015-5260: insufficient validation of surface_id parameter can cause
crash. (Closes: #801089)
CVE-2015-5261: host memory access from guest using crafted images.
(Closes: #801091)
* Add series of patches for CVE-2015-5260 and CVE-2015-6261.
CVE-2015-5260: insufficient validation of surface_id parameter can cause
crash. (Closes: #801089)
CVE-2015-5261: host memory access from guest using crafted images.
(Closes: #801091)
- files added:
- .pc/CVE-2015-5260_CVE-2015-5261
- .pc/CVE-2015-5260_CVE-2015-5261/0001-worker-validate-correctly-surfaces.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0001-worker-validate-correctly-surfaces.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0002-worker-avoid-double-free-or-double-create-of-surface.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0002-worker-avoid-double-free-or-double-create-of-surface.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0003-Define-a-constant-to-limit-data-from-guest.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0003-Define-a-constant-to-limit-data-from-guest.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0004-Fix-some-integer-overflow-causing-large-memory-alloc.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0004-Fix-some-integer-overflow-causing-large-memory-alloc.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0005-Check-properly-surface-to-be-created.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0005-Check-properly-surface-to-be-created.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0006-Fix-buffer-reading-overflow.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0006-Fix-buffer-reading-overflow.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0007-Prevent-32-bit-integer-overflow-in-bitmap_consistent.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0007-Prevent-32-bit-integer-overflow-in-bitmap_consistent.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0008-Fix-race-condition-on-red_get_clip_rects.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0008-Fix-race-condition-on-red_get_clip_rects.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0009-Fix-race-in-red_get_image.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0009-Fix-race-in-red_get_image.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0010-Fix-race-condition-in-red_get_string.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0010-Fix-race-condition-in-red_get_string.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0011-Fix-integer-overflow-computing-glyph_size-in-red_get.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0011-Fix-integer-overflow-computing-glyph_size-in-red_get.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0012-Fix-race-condition-in-red_get_data_chunks_ptr.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0012-Fix-race-condition-in-red_get_data_chunks_ptr.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0013-Prevent-memory-leak-if-red_get_data_chunks_ptr-fails.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0013-Prevent-memory-leak-if-red_get_data_chunks_ptr-fails.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0014-Prevent-DoS-from-guest-trying-to-allocate-too-much-d.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0014-Prevent-DoS-from-guest-trying-to-allocate-too-much-d.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0015-Fix-some-possible-overflows-in-red_get_string-for-32.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0015-Fix-some-possible-overflows-in-red_get_string-for-32.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0016-Make-sure-we-can-read-QXLPathSeg-structures.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0016-Make-sure-we-can-read-QXLPathSeg-structures.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0017-Avoid-race-condition-copying-segments-in-red_get_pat.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0017-Avoid-race-condition-copying-segments-in-red_get_pat.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0018-Prevent-data_size-to-be-set-independently-from-data.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0018-Prevent-data_size-to-be-set-independently-from-data.patch/server
- .pc/CVE-2015-5260_CVE-2015-5261/0019-Prevent-leak-if-size-from-red_get_data_chunks-don-t-.patch
- .pc/CVE-2015-5260_CVE-2015-5261/0019-Prevent-leak-if-size-from-red_get_data_chunks-don-t-.patch/server
- debian/patches/CVE-2015-5260_CVE-2015-5261
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
