/ 
Tk-804.034_500
/ Tk::tixWm
Security Advisories (6)
CVE-2007-4769 (2008-01-09)

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.

CVE-2018-25032 (2022-03-25)

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

CVE-2011-3045 (2012-03-22)

Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.

CVE-2016-10087 (2017-01-30)

The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL pointer dereference vectors involving loading a text chunk into a png structure, removing the text, and then adding another text chunk to the structure.

CVE-2007-4772 (2008-01-09)

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.

CVE-2007-6067 (2008-01-09)

Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.

NAME

Tk::tixWm - Tix's addition to the standard TK wm command.

SYNOPSIS

$widget->wmCapture

$widget->wmRelease

DESCRIPTION

The wmCapture and the wmRelease methods change the toplevel attribute of Tk widgets.

METHODS

$widget->wmCapture

Converts the toplevel window specified by $widget into a non-toplevel widget. Normally this command is called to convert a Toplevel widget into a Frame widget. The newly-converted frame widget is un-mapped from the screen. To make it appear inside its parent, you must call a geometry manager (e.g. grid or pack) explictly.

$widget->wmRelease

Makes the non-toplevel window specified by $widget into a toplevel widget. Normally this command is called to convert a Frame widget into a Toplevel widget, but it can also be used on any non-toplevel widget (e.g, label). The newly-converted toplevel window is in a withdrawn state. To make it appear on the screen, you must call deiconify after calling wmRelease.

Any data associated with $widget via wm methods (icon, protocol, command etc.) are released, and must be re-established if window is later re-captured.

BUGS

wmCapture does not exist in the Win32 window manager code.

How these methods interact with perl/Tk's class hierarchy is not yet clear. In particular a wmReleased window will not automatically ``inherit'' the Tk::Wm methods, however a wmCaptured window still will. (A released Label might make a good candidate for an Icon.)

AUTHORS

Ioi Kim Lam - ioi@graphics.cis.upenn.edu wrote original Tix version. Updated for tk8.0, Win32 and perl by Nick Ing-Simmons.

SEE ALSO

Tk::Wm Tk::Mwm Tk::Frame Tk::Toplevel

KEYWORDS

window manager, wm, TIX