summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Expand)AuthorFilesLines
2014-05-12CVE-2014-0211: integer overflow in fs_read_extent_info()Alan Coopersmith1-1/+11
2014-05-12CVE-2014-0210: unvalidated length fields in fs_read_query_info()Alan Coopersmith2-0/+46
2014-05-12CVE-2014-0211: Integer overflow in fs_get_reply/_fs_start_readAlan Coopersmith1-0/+18
2014-05-12CVE-2014-0210: unvalidated lengths when reading replies from font serverAlan Coopersmith1-6/+38
2014-05-12CVE-2014-0210: unvalidated length in _fs_recv_conn_setup()Alan Coopersmith1-2/+18
2014-05-12CVE-2014-0209: integer overflow of realloc() size in lexAlias()Alan Coopersmith1-0/+4
2014-05-12CVE-2014-0209: integer overflow of realloc() size in FontFileAddEntry()Alan Coopersmith1-0/+5
2014-04-24fs_send_open_font needs to allow namelen of 0 when FontReopen is setAlan Coopersmith1-1/+1
2014-04-23Clean up warnings when src/fc is built with -DDEBUGAlan Coopersmith1-3/+1
2014-04-23Allow enabling src/fc DEBUG helpers via CPPFLAGSAlan Coopersmith1-1/+2
2014-04-21Check if pointer returned by BufFileCreate is NULL before writing to itAlan Coopersmith1-2/+4
2014-04-11Fix buffer read overrunPeter Harris1-1/+1
2014-01-29Warning fixes.Keith Packard13-46/+52
2014-01-08Remove redundant setting of 'len' in SPropRecValList_add_by_font_capAlan Coopersmith1-1/+0
2014-01-08Initialize (unused) data field in fsListCataloguesReq before sending it.Alan Coopersmith1-0/+1
2014-01-08Remove redundant declaration of FontFileStartListFonts()Alan Coopersmith1-5/+0
2014-01-08Fix unused variable 'dir' warningsAlan Coopersmith2-7/+0
2013-12-30Limit additional sscanf strings to fit buffer sizesAlan Coopersmith1-3/+11
2013-12-30CVE-2013-6462: unlimited sscanf overflows stack buffer in bdfReadCharacters()Alan Coopersmith1-1/+1
2013-12-13Don't leak old allocation if realloc fails to enlarge itAlan Coopersmith2-11/+18
2013-11-22Make serverGeneration unsignedJulien Cristau1-1/+1
2013-11-01Replace malloc(strlen)+strcpy/strcat calls with strdupAlan Coopersmith3-12/+5
2013-11-01xstrdup -> strdupAlan Coopersmith3-31/+2
2013-06-24Require ANSI C89 pre-processor, drop pre-C89 token pasting supportAlan Coopersmith1-5/+0
2013-06-02Protect config.h inclusion with ifdef HAVE_CONFIG_H, like usual.Thomas Klausner1-0/+2
2013-01-16Replace deprecated Automake INCLUDES variable with AM_CPPFLAGSAlan Coopersmith7-9/+9
2012-12-07catalogue: Fix obvious thinkoAdam Jackson1-1/+1
2012-10-29Omit catalogue support on systems without symlinksYaakov Selkowitz2-0/+6
2012-08-24If socket is interrupted with signal EINTR, re-attempt read.Arvind Umrao1-2/+5
2011-11-11Use * precision notation instead of computing sprintf format stringsAlan Coopersmith1-11/+5
2011-11-11Fix printf warnings about incorrect argument typesAlan Coopersmith5-27/+41
2011-11-11Add _X_ATTRIBUTE_PRINTF to *Error/*Warning functions taking printf formatsAlan Coopersmith1-1/+1
2011-11-11Add const attributes to fix gcc -Wwrite-strings warningsAlan Coopersmith10-22/+22
2011-10-10Support compress files with maxbits < 12Tomas Hoger1-12/+2
2011-09-18libxfont: An uninitialized pointer causes a crash if pcf header is corrupted.Olli Vertanen1-0/+2
2011-09-18Fix empty statement in if conditional.Joerg Sonnenberger1-1/+1
2011-09-17Do proper input validation to fix for CVE-2011-2895.Joerg Sonnenberger1-13/+16
2011-09-16Strip trailing whitespaceAlan Coopersmith54-656/+656
2011-08-10LZW decompress: fix for CVE-2011-2895Thomas Hoger1-0/+2
2011-05-17Fix memory leak in allocation failure path of BitmapOpenScalable()Alan Coopersmith1-7/+4
2010-11-21Sun's copyrights belong to Oracle nowAlan Coopersmith1-1/+1
2010-10-06Purge cvs tags.Jesse Adkins54-134/+0
2010-09-27FreeType: Cleanup MUMBLE and fix printing of XLFD in debug spew.Jeremy Huddleston2-20/+10
2010-08-09Revert "Bug #6247: Fix build on Cygwin"Yaakov Selkowitz1-1/+1
2010-08-08Fix builds with Sun compilersAlan Coopersmith1-0/+2
2010-07-10darwin: Fix build regression introduced by previous patchJeremy Huddleston1-1/+10
2010-07-08Build fix for platforms which don't have weak linkageJon TURNEY2-0/+3
2010-06-21Use one single function to register fpe functionsTiago Vignatti1-0/+7
2010-01-14Update Sun license notices to current X.Org standard formAlan Coopersmith1-23/+18
2009-10-07Remove unused setting of ENCODINGSDIRAlan Coopersmith1-6/+1