Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP2:GA
LibVNCServer.17331
LibVNCServer-CVE-2019-15690.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File LibVNCServer-CVE-2019-15690.patch of Package LibVNCServer.17331
diff --git a/libvncclient/cursor.c b/libvncclient/cursor.c index 67f45726..40ffb3b0 100644 --- a/libvncclient/cursor.c +++ b/libvncclient/cursor.c @@ -28,6 +28,8 @@ #define OPER_SAVE 0 #define OPER_RESTORE 1 +#define MAX_CURSOR_SIZE 1024 + #define RGB24_TO_PIXEL(bpp,r,g,b) \ ((((uint##bpp##_t)(r) & 0xFF) * client->format.redMax + 127) / 255 \ << client->format.redShift | \ @@ -54,6 +56,9 @@ rfbBool HandleCursorShape(rfbClient* client,int xhot, int yhot, int width, int h if (width * height == 0) return TRUE; + if (width >= MAX_CURSOR_SIZE || height >= MAX_CURSOR_SIZE) + return FALSE; + /* Allocate memory for pixel data and temporary mask data. */ if(client->rcSource) free(client->rcSource);
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor