oss-sec mailing list archives
Re: CVE Request: xorg-server and pixman
From: Kurt Seifried <kseifried () redhat com>
Date: Tue, 03 Dec 2013 21:32:33 -0700
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12/03/2013 10:54 AM, Jamie Strandboge wrote:
Hi, This bug has been public since August but I could find a CVE for it: https://launchpad.net/bugs/1197921 There are two bugs - Xorg can be made to crash and pixman can trigger the aformentioned Xorg crash. A simplified reproducer is in the pixman patches with another reproducer in the Launchpad bug. The xorg xorg-server - exa: only draw valid trapezoids The patch was submitted in October but doesn't seem to be applied yet, so I'm CC'ing xorg_security. Patch references the pixman f.d.o bug, but doesn't seem to have an associated xorg bug. http://patchwork.freedesktop.org/patch/14769/ http://lists.x.org/archives/xorg-devel/2013-October/037996.html Pixman - Corrupted CustomShape crashes Xorg https://bugs.freedesktop.org/show_bug.cgi?id=67484 Patch: - 5e14da97f16e421d084a9e735be21b1025150f0c (fix) - 2f876cf86718d3dd9b3b04ae9552530edafe58a1 (test case) Thanks!
So only x.org crashes, you can trigger it via X.org, or via pixman? or is pixman also crashing? - -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (GNU/Linux) iQIcBAEBAgAGBQJSnrBgAAoJEBYNRVNeJnmTezEP/03QEjtOV38i8iaCs67r2Ldp 69qjo2RLgvlW0djDCPVXQVJMP5nQb7hSLVTWlyRdV9MvKKzCXMrRcUwz9AEZyeJW Hn9qRF+Eytn1cIuP6UXcG978pqwMgnyU7Lfiq4PqI+s4pheMtwT8eX4VYKFFuJ3/ 0tgXK4AvrpEKcYO3+xezx36bO6SklGMNsV4WTdENHqCBK3IrjwzyQ7+AI0K2iIPR gRMnl1OB/D2XXQa3/lWUz8D9cReoLVJI1NPrSbPPhNDMqbc6bq5hxXkF8cKNjRwW pT+hTMDg/YIpuRTgXRIHsB4idjSLhLKIxsujTqASZn6Rxb1Ckbi53WN+x5kQ+Nq8 X+Pxxx+Yw9YCzupRSmmgTyfvurfQy8b5ZoIocMI3Itud3IW3ZH51s6ICPe+1CWTb s903F8vIObnL2NqSGs4D6iBGcgJ4U1MNhOP0nqo4GOJVFueO/mhrVG6kSA4T+SBl L4Gx1d9EwywT6pC82OxN7WPopkCAepUEa0iH0ei4MiygSBdv3OX3wV3g9hKz1Siv v8ObilLFz3hW/yYtVqAbYGrsqPakivuyzAHOYp6UtiNxrfBlVAs7plRaD2BnbZqS 5YmvZ9Uw4H6Hr1jQ4/J97ZFfpnq2Sv9OSp6mdP5j9Nmg7KsfUY1WwXwno7joolju jmArlWRbqZUTS4Qz5VSp =Punz -----END PGP SIGNATURE-----
Current thread:
- CVE Request: xorg-server and pixman Jamie Strandboge (Dec 03)
- Re: CVE Request: xorg-server and pixman Kurt Seifried (Dec 03)
- Re: CVE Request: xorg-server and pixman Murray McAllister (Dec 03)
- Re: CVE Request: xorg-server and pixman Jamie Strandboge (Dec 04)
- Re: CVE Request: xorg-server and pixman Kurt Seifried (Dec 04)
- Re: CVE Request: xorg-server and pixman Murray McAllister (Dec 03)
- Re: CVE Request: xorg-server and pixman Kurt Seifried (Dec 03)