Gitiles
Code Review Sign In
gerrit.omnirom.org / android_external_tigervnc / c1244c096dd9d314465a985e06d97450c8c871a2
commitc1244c096dd9d314465a985e06d97450c8c871a2[log] [tgz]
authorPierre Ossman <ossman@cendio.se>Wed Mar 19 12:16:48 2014 +0000
committerPierre Ossman <ossman@cendio.se>Wed Mar 19 12:16:48 2014 +0000
tree12dfc8e5b0013c09be0a5696fa5d9e1d66186de1
parent7ea9b2c602893ac1b7e843bcf2f64e1677f98d1d [diff]
The ZRLE decoder relied on an assert() for boundary checks. A default
Release build however will remove all asserts making it possible to
overrun this buffer. This could be exploited by a malicious server.
This issue has been assigned CVE-2014-0011. Patch by Tim Waugh for
Red Hat.


git-svn-id: svn://svn.code.sf.net/p/tigervnc/code/trunk@5167 3789f03b-4d11-0410-bbf8-ca57d06f2519
1 file changed
tree: 12dfc8e5b0013c09be0a5696fa5d9e1d66186de1
  1. cmake/
  2. common/
  3. contrib/
  4. doc/
  5. java/
  6. media/
  7. po/
  8. release/
  9. unix/
  10. vncviewer/
  11. win/
  12. BUILDING.txt
  13. CMakeLists.txt
  14. config.h.in
  15. LICENCE.TXT
  16. README.txt