Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
View | Details | Raw Unified | Return to bug 701820 | Differences between
and this patch

Collapse All | Expand All

(-)file_not_specified_in_diff (-3 / +2 lines)
Line  Link Here
CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows
CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows
1
attacker to consume excessive amount of resources like CPU and RAM
1
attacker to consume excessive amount of resources like CPU and RAM
2
--
2
++ b/vnc_unixsrc/vncviewer/rfbproto.c
3
-- a/vnc_unixsrc/vncviewer/rfbproto.c
Lines 3156-3162 Link Here
3156
			if (db) fprintf(stderr, "Raw:     %dx%d+%d+%d\n", rect.r.w, rect.r.h, rect.r.x, rect.r.y);
3156
			if (db) fprintf(stderr, "Raw:     %dx%d+%d+%d\n", rect.r.w, rect.r.h, rect.r.x, rect.r.y);
3157
			area_raw += rect.r.w * rect.r.h;
3157
			area_raw += rect.r.w * rect.r.h;
3158
3158
3159
			while (rect.r.h > 0) {
3159
			while (linesToRead && rect.r.h > 0) {
3160
				if (linesToRead > rect.r.h) {
3160
				if (linesToRead > rect.r.h) {
3161
					linesToRead = rect.r.h;
3161
					linesToRead = rect.r.h;
3162
				}
3162
				}

Return to bug 701820