]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4c6df83) | patch
xwayland: fix CVE-2025-49179
authorArchana Polampalli <archana.polampalli@windriver.com>
Wed, 2 Jul 2025 15:46:18 +0000 (21:16 +0530)
committerSteve Sakoman <steve@sakoman.com>
Thu, 3 Jul 2025 16:04:44 +0000 (09:04 -0700)
commitde28bff9b54b2725d8c06c4760e0ed2b59d3fa61
tree373ca12223ccc2a0c955414d2359d331320d64c1tree | snapshot
parent4c6df8320497c2ebf09902a62b6a3f3b061be917commit | diff
xwayland: fix CVE-2025-49179

A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients
function does not check for an integer overflow when computing request length,
which allows a client to bypass length checks.

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-graphics/xwayland/xwayland/CVE-2025-49179.patch [new file with mode: 0644] blob
meta/recipes-graphics/xwayland/xwayland_23.2.5.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core