0dde427829
- Buffer overflow when pasting too long text from clipboard to dialog boxes (not remotely exploitable) - A write out of allocated memory in the graphics renderer (potentially exploitable) - An infinite loop when parsing invalid usemap specification in text and graphics mode (can cause browser lockup, but not otherwise exploitable) - Accesses out of memory in the xbm decoder (potentially exploitable) Also drop dip.c patch to resolve crashes with libpng 1.5, upstream appears to have fixed this separately in the update to 2.5. Thanks jasper@ for additional testing. |
||
---|---|---|
.. | ||
patch-html_c |