Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Xpra memory disclosure
Jan 18 2012 09:10PM
Antoine Martin (antoine nagafix co uk)
Xpra is screen for X11. This is the fork located at:
Xpra versions 0.0.7.28 (r191) through to 0.0.7.34 (r443) return random
chunks of memory to the clients by using the wrong size (multiplying by
4) for the X11 cursor memory buffer. (from XFixesGetCursorImage)
The byte order of the...
[ more ]
Copyright 2010, SecurityFocus