[src/netbsd-6-1]: src/doc Ticket 1063.

[msaitoh <msaitoh%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/623cc9c910aa
branches:  netbsd-6-1
changeset: 775942:623cc9c910aa
user:      msaitoh <msaitoh%NetBSD.org@localhost>
date:      Wed May 14 03:54:55 2014 +0000

description:
Ticket 1063.

diffstat:

 doc/CHANGES-6.1.5 |  17 ++++++++++++++++-
 1 files changed, 16 insertions(+), 1 deletions(-)

diffs (28 lines):

diff -r 2c26bd1ef199 -r 623cc9c910aa doc/CHANGES-6.1.5
--- a/doc/CHANGES-6.1.5 Mon Apr 21 21:04:25 2014 +0000
+++ b/doc/CHANGES-6.1.5 Wed May 14 03:54:55 2014 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-6.1.5,v 1.1.2.4 2014/04/21 21:04:25 bouyer Exp $
+# $NetBSD: CHANGES-6.1.5,v 1.1.2.5 2014/05/14 03:54:55 msaitoh Exp $
 
 A complete list of changes from the NetBSD 6.1.4 release to the NetBSD 6.1.5
 release:
@@ -73,3 +73,18 @@
        Rewrite the code so that we don't need to allocate the whole section.
        [maxv, ticket #1051]
 
+xsrc/external/mit/libXfont/dist/src/fc/fsconvert.c     1.2
+xsrc/external/mit/libXfont/dist/src/fc/fserve.c                1.2
+xsrc/external/mit/libXfont/dist/src/fontfile/dirfile.c 1.2
+xsrc/xfree/xc/lib/font/fc/fsconvert.c                  1.5
+xsrc/xfree/xc/lib/font/fc/fserve.c                     1.5
+xsrc/xfree/xc/lib/font/fontfile/dirfile.c              1.5
+
+       Fix multiple vulnerabilities in libXfont:
+       - CVE-2014-0209: integer overflow of allocations in font metadata
+         file parsing
+       - CVE-2014-0210: unvalidated length fields when parsing xfs protocol
+         replies
+       - CVE-2014-0211: integer overflows calculating memory needs for xfs
+         replies
+       [spz, ticket #1063]