Skip to content

fix for ZDI-11426

Matthieu Herrb requested to merge mherrb/xserver:server-1.20-branch into server-1.20-branch

Avoid leaking un-initalized memory to clients by zeroing the whole pixmap on initial allocation.

This vulnerability was discovered by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative

Signed-off-by: Matthieu Herrb matthieu@herrb.eu Reviewed-by: Alan Coopersmith alan.coopersmith@oracle.com (cherry picked from commit a6b2cbe9)

Merge request reports