[3.3] libxv: Insufficient validation of server responses results in out-of bounds accesses (CVE-2016-5407)
Insufficient validation of data from the X server
can cause out of boundary memory and memory corruption.
Affected versions:
libXv <= 1.0.10
Fixed In Version:
libXv 1.0.11
References:
https://lists.x.org/archives/xorg-announce/2016-October/002720.html
Patch:
https://cgit.freedesktop.org/xorg/lib/libXv/commit/?id=d9da580b46a28ab497de2e94fdc7b9ff953dab17
(from redmine: issue id 6279, created on 2016-10-06, closed on 2016-10-25)
- Relations:
- parent #6276 (closed)
- Changesets:
- Revision b2820a7b on 2016-10-19T09:58:33Z:
main/libxv: security fix (CVE-2016-5407). Fixes #6279