IABSD.fr/xenocara
Branch :
Log
| Author | Commit | Date | CI | Message |
|---|---|---|---|---|
 |
394a8aee | 2017-10-14 09:32:30 | MFC: Xi: fix wrong extra length check in ProcXIChangeHierarchy (CVE-2017-12178) | |
|
74d10c41 | 2017-10-14 09:30:50 | MFC: Xi: integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer [jcristau: originally this patch fixed the same issue as commit 211e05ac85 "Xi: Test exact size of XIBarrierReleasePointer", with the addition of these checks] This addresses CVE-2017-12179 | |
|
792e23cc | 2017-10-14 09:29:01 | MFC: Xi: Test exact size of XIBarrierReleasePointer Otherwise a client can send any value of num_barriers and cause reading or swapping of values on heap behind the receive buffer. | |
|
515a707d | 2017-10-14 09:24:30 | MFC: hw/xfree86: unvalidated lengths This addresses: CVE-2017-12180 in XFree86-VidModeExtension CVE-2017-12181 in XFree86-DGA CVE-2017-12182 in XFree86-DRI | |
|
d6248304 | 2017-10-14 09:22:49 | MFC: xfixes: unvalidated lengths (CVE-2017-12183) v2: Use before swap (Jeremy Huddleston Sequoia) v3: Fix wrong XFixesCopyRegion checks (Alan Coopersmith) | |
|
3b3c79f0 | 2017-10-14 09:20:42 | MFC: Unvalidated lengths v2: Add overflow check and remove unnecessary check (Julien Cristau) This addresses: CVE-2017-12184 in XINERAMA CVE-2017-12185 in MIT-SCREEN-SAVER CVE-2017-12186 in X-Resource CVE-2017-12187 in RENDER | |
|
fe08a081 | 2017-10-14 09:17:40 | MFC: os: Make sure big requests have sufficient length. A client can send a big request where the 32B "length" field has value 0. When the big request header is removed and the length corrected, the value will underflow to 0xFFFFFFFF. Functions processing the request later will think that the client sent much more data and may touch memory beyond the receive buffer. | |
|
9b9efb1b | 2017-10-14 09:15:11 | MFC: xkb: Handle xkb formated string output safely (CVE-2017-13723) Generating strings for XKB data used a single shared static buffer, which offered several opportunities for errors. Use a ring of resizable buffers instead, to avoid problems when strings end up longer than anticipated. | |
|
fd77a349 | 2017-10-14 09:12:44 | MFC: xkb: Escape non-printable characters correctly XkbStringText escapes non-printable characters using octal numbers. Such escape sequence would be at most 5 characters long ("\0123"), so it reserves 5 bytes in the buffer. Due to char->unsigned int conversion, it would print much longer string for negative numbers. | |
|
2f2a50b9 | 2017-10-14 09:06:06 | MFC: Xext/shm: Validate shmseg resource id (CVE-2017-13721) Otherwise it can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client. | |
|
7e1ada62 | 2017-10-14 09:03:00 | MFC: pcfGetProperties: Check string boundaries (CVE-2017-13722) Without the checks a malformed PCF file can cause the library to make atom from random heap memory that was behind the `strings` buffer. This may crash the process or leak information. | |
|
dadc83bb | 2017-10-14 09:02:08 | MFC: Check for end of string in PatternMatch (CVE-2017-13720) If a pattern contains '?' character, any character in the string is skipped, even if it is '\0'. The rest of the matching then reads invalid memory. | |
|
ca5563fe | 2017-10-12 19:32:43 | Remove xdm. Unhooked since more than 6 months. | |
|
08a235a6 | 2017-10-04 18:28:59 | chown before chmod This prevents a malicious user logging out from calling chmod while still owning /dev/console and thus by-passing the '622' mode that is set here. Issue reported by Tim Chase. Thanks. Merged from xdm upstreams | |
|
c6ab4990 | 2017-09-25 15:05:57 | Force Intel Ironlake chipsets to use the xf86-video-intel driver. stsp@ reported that modesetting(4) has been reported unreliable on his laptop, while intel(4) works. XXXX to be removed after 6.2 to figure out and fix the issue. ok kettenis@, also discussed briefly with deraadt@ during EuroBSDCon. | |
|
b11b21f0 | 2017-09-17 10:54:40 | updates | |
 |
b8533542 | 2017-09-06 14:15:13 | Case matters for menu matching on executables; from ben@lloyd.im. | |
 |
5150e677 | 2017-09-05 17:48:07 | backout hard-coded behaviour change which was not discussed, in particular no justification for why the current behaviour is wrong | |
 |
44401622 | 2017-08-30 07:59:00 | amend comment | |
|
7055fe14 | 2017-08-30 07:48:56 | Use 'unix:0' for the DISPLAY environment variable ok matthieu@ | |
 |
12dfb02f | 2017-08-29 08:50:37 | Fix error check according to the secure idiom described in the snprintf(3) manual. ok dcoppa@ | |
|
7069c249 | 2017-08-28 15:13:11 | When xinit starts an X server that listens only on UNIX socket, prefer DISPLAY=unix:0 rather than DISPLAY=:0. This will prevent applications from ever falling back to TCP if the UNIX socket connection fails (such as when the X server crashes). joint work with tb@ cluebat and ok matthieu@ | |
 |
e96db7b0 | 2017-08-26 17:08:40 | update | |
|
ad2ad70a | 2017-08-26 16:59:17 | Revert to Mesa 13.0.6 to hopefully address rendering issues a handful of people have reported with xpdf/fvwm on ivy bridge with modesetting driver. | |
|
754e2ec1 | 2017-08-26 05:58:10 | Make disabling regenerating source files provided in Mesa distfiles that require python/bison a configure flag instead of the previous way of testing whether python was found (which shouldn't be the case in xenocara even with ports packages installed). This is required when timestamps change on files causing targets to be invoked that will break if python and bison aren't available and found in path by the configure script. | |
|
1711398f | 2017-08-22 06:54:08 | Missing dot breaks semantic markup. from Klemens Nanni. Thanks. | |
|
9756fc3f | 2017-08-21 14:34:19 | sync | |
|
26a8646e | 2017-08-20 16:43:25 | add pledge. ok tb@ | |
|
83cf67e9 | 2017-08-20 16:42:21 | Close stdio before entering main loop. ok tb@ | |
|
b9ed073e | 2017-08-19 10:12:38 | update | |
|
fdce4630 | 2017-08-19 10:11:04 | Update to fontconfig 2.12.4. No API change. | |
|
03a8a8ee | 2017-08-19 09:12:13 | xdm -> xenodm. From Kemmens Nanni. Thanks. | |
|
3d1f4a5a | 2017-08-16 09:51:07 | sync | |
|
c97e30df | 2017-08-14 11:21:30 | regen | |
|
46c4fa73 | 2017-08-14 11:17:43 | cope with cvs import changing timestamps which caused make rules that invoke python to attempt to run and fail | |
|
9a7755e9 | 2017-08-14 10:04:25 | update | |
|
a35683fd | 2017-08-14 10:00:55 | sync | |
|
36c1bd02 | 2017-08-14 09:57:57 | Merge Mesa 17.1.6 | |
|
6526d331 | 2017-08-14 09:30:06 | Import Mesa 17.1.6 | |
|
b8da768e | 2017-08-07 19:17:56 | Disable SSE optimizations on i386/amd64 for SlowBcopy. It is supposed to be slow, and when such instructions are used to copy data from/to mapped video memory, some hypervisors (e.g. KVM, Microsoft Hyper-V) can generate SIGILL or SIGBUS exceptions, causing Xorg to crash. Bug report to OpenBSD by Max Parmer, fix from FreeBSD (Dimitry Andric) via kettenis@ ok kettenis@ | |
 |
38475bb3 | 2017-08-07 12:30:34 | Create on OpenBSD-specific version of listPossibleVideoDrivers() that takes care of autoconfiguration based on the information returned by the WSDISPLAYIO_GTYPE ioctl of the console FD. This should fix selection of wsfb on loongson and sgi when using a non-KMS kernel driver. ok matthieu@, jsg@ | |
 |
dc1b9a9b | 2017-08-07 07:03:44 | update | |
|
ead429de | 2017-08-05 14:29:27 | update | |
|
1a7fdf6c | 2017-08-05 14:27:02 | sync | |
|
e188ddf9 | 2017-08-05 14:21:16 | Merge libdrm 2.4.82 | |
|
fb01c3ce | 2017-08-05 14:15:15 | Import libdrm 2.4.82 | |
 |
06a1409c | 2017-07-27 15:24:55 | check for typeof() and define HAVE_TYPEOF if available so that we use the proper implementation of __container_of from xorg's list.h ok kettenis@ | |
|
e1e9d732 | 2017-07-26 21:14:54 | Stop abusing cpp as generic macro processor in the build system. ok naddy@ | |
|
7c70a5fe | 2017-07-26 10:05:19 | regen | |
|
9cc7f924 | 2017-07-26 10:04:30 | There is no xdm.service file in xenodm. | |
|
ad7b0abb | 2017-07-25 19:59:14 | switch over to use tradcpp over cpp because we cannot make sure that every compiler's cpp will use the required traditional way ok deraadt@, millert@, matthieu@ | |
|
799b66d3 | 2017-07-21 15:55:37 | Use the key names from keysymdef.h in the default key bindings list for clarification. from Michael Reed. | |
|
3115efcb | 2017-07-15 19:23:49 | update | |
|
99d0aff6 | 2017-07-15 19:20:51 | Update to xterm 330 | |
|
62927feb | 2017-07-14 18:01:46 | remove extra parentheses | |
|
91bf2635 | 2017-07-14 17:23:38 | Pull over the remaining re-implemented window move/resize functions and create a wrapper so that the key and mouse based move/resize callbacks can be unified. This has already been done with other window operations and menus. | |
|
d74e2cb1 | 2017-07-14 11:38:05 | Use the modesetting driver by default on 4th generation Intel Graphics and later. This matches what several Linux distros do these days as it tends to work better than the intel driver in most cases. There are some performance issues with vncviewer on at least Ivy Bridge and Haswell. But for now that regression outweighs the benefits. ok robert@, tedu@, sthen@ | |
|
11bfbfff | 2017-07-12 20:08:07 | Add code to update the value of the RandR "Backlight" property based on the KMS connector property of the same name if such a property is present. ok matthieu@ | |
|
ea88c222 | 2017-07-12 16:56:26 | rename one function, matching others, to help upcoming change | |
|
71381ebd | 2017-07-10 13:36:58 | Replace fgetln(3) with POSIX getline(3); inspired by brynet and Ingo. feedback and ok brynet@ | |
|
babe51b1 | 2017-07-09 07:39:36 | update | |
|
1862f548 | 2017-07-07 06:22:19 | Merge upstream fixes to the X event swapping code. (CVE-2017-10971 and CVE-2017-10972). | |
|
68499880 | 2017-07-06 17:09:17 | fix a few WARNINGS (new sentence, new line and extraneous Pp macro) found with mandoc -Tlint | |
|
ed8a48df | 2017-07-06 17:01:10 | from src, by espie@: no need to generate y.tab.h if nothing uses it, set YFLAGS to nothing | |
 |
60af74b7 | 2017-07-02 09:53:05 | xenocara is the first tree to zap 'make depend'! okay matthieu@ | |
|
564a026c | 2017-07-02 09:52:23 | add a real dependency on the shadow tree, removes the need to run make depend okay matthieu@ (I added a comment explaining why this comes after bsd.xorg.mk) | |
|
2c1eb800 | 2017-06-25 03:27:24 | sync | |
|
c9e1b05c | 2017-06-24 13:58:55 | Update to freetype-doc-2.8 | |
|
b436b5a3 | 2017-06-24 08:54:32 | Initialize flags member of struct drm_915_gem_mmap as the upcoming inteldrm(4) update checks it. Upstream fixed this differently, but that fix doesn't work for us as our ioctl(2) subsystem works differently from Linux. ok jsg@, tom@ | |
|
139f8619 | 2017-06-23 19:28:03 | Update | |
|
1a2ccef1 | 2017-06-23 16:15:17 | Update to freetype-2.8 No fallout in a bulk build on i386 (sthen@) OK matthieu@, sthen@ | |
|
251e3d94 | 2017-06-18 21:09:07 | let X directories build even if you forget depend. - use BUILDFIRST - have fontconfig use normal 'all' targets to make sure its files are built - explicitly document the fontconfig lib order okay matthieu@ | |
|
7224838f | 2017-06-16 15:13:29 | update | |
 |
3edcbf63 | 2017-05-21 17:36:40 | Add "Sun LKeys" section, this patch forgot add in last update. noticed deraadt@, ok matthieu@ | |
 |
288306ac | 2017-05-21 13:22:23 | sync | |
|
55a8e552 | 2017-05-21 13:18:29 | Make X work with radeondrm(4) hardware on loongson. OK jsg@ | |
|
e1b18e58 | 2017-05-10 08:27:50 | Fixes for CVE-2017-8105 and CVE-2017-8287 out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c From upstream via Arch Linux OK matthieu@ | |
|
942a9a42 | 2017-05-09 18:43:40 | drop obsolete comment | |
|
ba98b33f | 2017-05-09 13:40:18 | Alter callbacks to take a struct instead of a growing number of arguments; greatly simplifies upcoming work. | |
|
7aacbe28 | 2017-05-05 14:14:19 | Ensure clients stay within the viewable bounds on placement, even with empty borders; based on a patch from Vadim Vygonets. | |
|
c6ed26e2 | 2017-05-01 12:54:55 | Clean up, unify and accurately calculate edge distance with client move/resize actions, so as to not lose windows off the edge. inspired by diffs (and feedback) from Vadim Vygonets. | |
|
8bbf0afc | 2017-04-26 21:10:54 | Switch bwidth type; unfortunately X11 is inconsistent. | |
|
8ed62b19 | 2017-04-25 13:40:33 | The r1.36 menuq_add() conversion did this one wrong; fix by reverting to the original code which adds to resultentry list, as opposed to the wrong one in menuq_add(). Fixes crash noticed by at least Rickard Gustafsson. | |
|
591ec270 | 2017-04-25 12:08:05 | Remove 'noresult' (and simplify) as it does nothing and makes the logic around it needless. History doesn't show what this might have been used for in future iterations. | |
|
021d728d | 2017-04-24 15:06:11 | search_match_path() isn't supposed to return anything. | |
|
193dcb45 | 2017-04-24 13:35:25 | Move queue init to caller so it's only called once in a few cases. | |
|
9edb3399 | 2017-04-24 13:31:19 | sort | |
|
0b5e66ec | 2017-04-24 12:27:32 | Raise the previously focused window, instead of the previous window in the cycle list; seems to match behaviour of other wm's; from Walter Alejandro Iglesias. | |
|
1d5e4218 | 2017-04-24 12:18:04 | For {h,v}tile, instead of keeping the master client's {h,v} geometry, expand it to %50 of the area, then fill in the remaining space with the other clients in the same group; from Gerrit Meyerheim. support from ajacoutot. | |
|
1afb080a | 2017-04-16 12:31:14 | update | |
|
d824b25c | 2017-04-16 09:58:50 | enforce ar to use the 'cruD' flagset in case libtool/automagic is used ok matthieu@ | |
|
fbe87ea2 | 2017-04-15 17:18:01 | remove all compile time __DATE__ and __TIME__ variables from the source ok deraadt@, matthieu@ | |
|
ff3608da | 2017-04-15 16:07:08 | update | |
|
aff7706d | 2017-04-14 07:56:08 | update | |
|
c7c4549f | 2017-04-14 07:53:41 | sync | |
|
a632c2fb | 2017-04-14 07:52:10 | Merge libdrm 2.4.79 | |
|
02337797 | 2017-04-14 07:45:34 | Import libdrm 2.4.79 | |
|
99c4447f | 2017-03-25 00:39:36 | update | |
|
fa6c2100 | 2017-03-25 00:29:27 | Merge Mesa 13.0.6 | |
|
480cde33 | 2017-03-25 00:05:01 | Import Mesa 13.0.6 |