debian/patches/CVE-2014-8xxx/0016-xfixes-unvalidated-length-in-SProcXFixesSelectSelect.patch

   1 From c0308b700e3e0f0b6b1dc350e822b6218d080f1a Mon Sep 17 00:00:00 2001
   2 From: Alan Coopersmith <alan.coopersmith@oracle.com>
   3 Date: Sun, 26 Jan 2014 20:02:20 -0800
   4 Subject: [PATCH 16/33] xfixes: unvalidated length in
   5  SProcXFixesSelectSelectionInput [CVE-2014-8102]
   6
   7 Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
   8 Reviewed-by: Peter Hutterer <peter.hutterer@who-t.net>
   9 ---
  10  xfixes/select.c |    1 +
  11  1 file changed, 1 insertion(+)
  12
  13 --- a/xfixes/select.c
  14 +++ b/xfixes/select.c
  15 @@ -201,6 +201,7 @@ SProcXFixesSelectSelectionInput(ClientPt
  16  {
  17      REQUEST(xXFixesSelectSelectionInputReq);
  18
  19 +    REQUEST_SIZE_MATCH(xXFixesSelectSelectionInputReq);
  20      swaps(&stuff->length);
  21      swapl(&stuff->window);
  22      swapl(&stuff->selection);