[17214] in bugtraq
Re: another Xlib buffer overflow
daemon@ATHENA.MIT.EDU (Matthieu Herrb)
Mon Oct 16 00:16:50 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <14823.32893.941728.85487@laas.fr>
Date: Fri, 13 Oct 2000 23:37:01 +0200
Reply-To: matthieu@laas.fr
From: Matthieu Herrb <matthieu@LAAS.FR>
X-To: Michal Zalewski <lcamtuf@TPI.PL>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.10.10010130218180.942-100000@localhost>
You wrote (in your message from Friday 13)
>
> Vulnerable object: XFree 3.3.x Xlib (no data on 4.0.x); no mention of fix
> in "security issues" page at www.xfree86.org.
>
It was fixed in XFree86 4.0. From the CHANGELOG:
XFree86 3.9Nu (13 January 1999)
[...]
2141. Fix some sun_path overflows in xtrans.
--
Matthieu
