Stefan Dirsch
d26ec6dbd4
0001-Make-ZlibInStream-more-robust-against-failures.patch
0002-Encapsulate-PixelBuffer-internal-details.patch
0003-Restrict-PixelBuffer-dimensions-to-safe-values.patch
0004-Add-write-protection-to-OffsetPixelBuffer.patch
0005-Handle-empty-Tight-gradient-rects.patch
0006-Add-unit-test-for-PixelFormat-sanity-checks.patch
0007-Fix-depth-sanity-test-in-PixelFormat.patch
0008-Add-sanity-checks-for-PixelFormat-shift-values.patch
0009-Remove-unused-FixedMemOutStream.patch
0010-Use-size_t-for-lengths-in-stream-objects.patch
0011-Be-defensive-about-overflows-in-stream-objects.patch
0012-Add-unit-tests-for-PixelFormat.is888-detection.patch
0013-Handle-pixel-formats-with-odd-shift-values.patch
* stack use-after-return due to incorrect usage of stack memory
in ZRLEDecoder (CVE-2019-15691, bsc#1159856)
* improper value checks in CopyRectDecode may lead to heap
buffer overflow (CVE-2019-15692, bsc#1160250)
* heap buffer overflow in TightDecoder::FilterGradient
(CVE-2019-15693, bsc#1159858)
* improper error handling in processing MemOutStream may lead
to heap buffer overflow (CVE-2019-15694, bsc#1160251
* stack buffer overflow, which could be triggered from
CMsgReader::readSetCurso (CVE-2019-15695, bsc#1159860)
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/tigervnc?expand=0&rev=168
72 lines
2.0 KiB
Diff
72 lines
2.0 KiB
Diff
From 4ff58f0acaeb566b79ae12cf013b376eaaaab834 Mon Sep 17 00:00:00 2001
|
|
From: Pierre Ossman <ossman@cendio.se>
|
|
Date: Mon, 23 Sep 2019 10:09:31 +0200
|
|
Subject: [PATCH] Remove unused FixedMemOutStream
|
|
|
|
---
|
|
common/rdr/FixedMemOutStream.h | 52 ------------------------------------------
|
|
1 file changed, 52 deletions(-)
|
|
delete mode 100644 common/rdr/FixedMemOutStream.h
|
|
|
|
diff --git a/common/rdr/FixedMemOutStream.h b/common/rdr/FixedMemOutStream.h
|
|
deleted file mode 100644
|
|
index e4ec52cb..00000000
|
|
--- a/common/rdr/FixedMemOutStream.h
|
|
+++ /dev/null
|
|
@@ -1,52 +0,0 @@
|
|
-/* Copyright (C) 2002-2005 RealVNC Ltd. All Rights Reserved.
|
|
- *
|
|
- * This is free software; you can redistribute it and/or modify
|
|
- * it under the terms of the GNU General Public License as published by
|
|
- * the Free Software Foundation; either version 2 of the License, or
|
|
- * (at your option) any later version.
|
|
- *
|
|
- * This software is distributed in the hope that it will be useful,
|
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
- * GNU General Public License for more details.
|
|
- *
|
|
- * You should have received a copy of the GNU General Public License
|
|
- * along with this software; if not, write to the Free Software
|
|
- * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307,
|
|
- * USA.
|
|
- */
|
|
-
|
|
-//
|
|
-// A FixedMemOutStream writes to a buffer of a fixed length.
|
|
-//
|
|
-
|
|
-#ifndef __RDR_FIXEDMEMOUTSTREAM_H__
|
|
-#define __RDR_FIXEDMEMOUTSTREAM_H__
|
|
-
|
|
-#include <rdr/OutStream.h>
|
|
-#include <rdr/Exception.h>
|
|
-
|
|
-namespace rdr {
|
|
-
|
|
- class FixedMemOutStream : public OutStream {
|
|
-
|
|
- public:
|
|
-
|
|
- FixedMemOutStream(void* buf, int len) {
|
|
- ptr = start = (U8*)buf;
|
|
- end = start + len;
|
|
- }
|
|
-
|
|
- int length() { return ptr - start; }
|
|
- void reposition(int pos) { ptr = start + pos; }
|
|
- const void* data() { return (const void*)start; }
|
|
-
|
|
- private:
|
|
-
|
|
- int overrun(int itemSize, int nItems) { throw EndOfStream(); }
|
|
- U8* start;
|
|
- };
|
|
-
|
|
-}
|
|
-
|
|
-#endif
|
|
--
|
|
2.16.4
|
|
|