Skip to content
Snippets Groups Projects
Commit 91f887b4 authored by Yair Mizrahi's avatar Yair Mizrahi Committed by Alan Coopersmith
Browse files

Avoid CVE-2023-43787 (integer overflow in XCreateImage) 


This doesn't fix the CVE - that has to happen in libX11, this
just tries to avoid triggering it from libXpm, and saves time
in not pretending we can successfully create an X Image for
which the width * depth would overflow the signed int used to
store the bytes_per_line value.

Signed-off-by: default avatarAlan Coopersmith <alan.coopersmith@oracle.com>
parent 00348988
1 merge request!21Security fixes for Oct. 3 advisory
Pipeline #1000905 passed
Stage: prep
Stage: build
Stage: test
Stage: deploy
Hide whitespace changes
Inline Side-by-side
Showing
with 5 additions and 0 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment