IABSD.fr/xenocara/xserver/Xext
Branch :
Log
| Author | Commit | Date | CI | Message |
|---|---|---|---|---|
 |
f9c3f64c | 2023-10-29 16:45:32 | Update to xserver 21.1.9. All the security patches have already been committed. Udated autoconf to 2.71 explains the large build infrastructure diff. | |
|
6c8ea4fe | 2023-01-22 09:44:41 | Merge xserver 21.1.6. Includes a few fixes to the security patches already committed. | |
|
8c4424dd | 2023-01-22 09:21:08 | Add back the meson build system to xserver. Not having those file only create noise when merging upstream releases. | |
|
49a16717 | 2022-12-14 10:29:00 | Fix serveral X server input validation errors that can cause varios issues: * CVE-2022-46340/ZDI-CAN-19265: X.Org Server XTestSwapFakeInput stack overflow * CVE-2022-46341/ZDI-CAN-19381: X.Org Server XIPassiveUngrab out-of-bounds access * CVE-2022-46342/ZDI-CAN-19400: X.Org Server XvdiSelectVideoNotify use-after-free * CVE-2022-46343/ZDI-CAN-19404: X.Org Server ScreenSaverSetAttributes use-after-free * CVE-2022-46344/ZDI-CAN-19405: X.Org Server XIChangeProperty out-of-bounds access * CVE-2022-46283/ZDI-CAN-19530: X.Org Server XkbGetKbdByName use-after-free | |
|
d016d47a | 2021-12-14 13:42:21 | Xext: Fix out of bounds access in SProcScreenSaverSuspend() ZDI-CAN-14951, CVE-2021-4010 | |
|
e086cf5a | 2021-11-11 09:03:02 | Update to xserver 21.1.0 | |
|
56c8d99a | 2020-12-12 09:30:50 | Update X server to version 1.20.10. Tested by jsg@ and naddy@ | |
|
9a532c54 | 2019-12-12 06:05:17 | Update to X server 1.20.6. Tested by naddy@ | |
|
a77e9959 | 2019-07-27 07:57:06 | Update to xserver 1.20.5. Tested by jsg@ | |
|
857585fc | 2018-02-18 17:16:37 | Update to xserver 1.19.6. bug fix release | |
|
1a66cad3 | 2017-12-08 15:01:59 | Update to xserver 1.19.5. Tested by bru@, jsg@ and others | |
|
515a707d | 2017-10-14 09:24:30 | MFC: hw/xfree86: unvalidated lengths This addresses: CVE-2017-12180 in XFree86-VidModeExtension CVE-2017-12181 in XFree86-DGA CVE-2017-12182 in XFree86-DRI | |
|
3b3c79f0 | 2017-10-14 09:20:42 | MFC: Unvalidated lengths v2: Add overflow check and remove unnecessary check (Julien Cristau) This addresses: CVE-2017-12184 in XINERAMA CVE-2017-12185 in MIT-SCREEN-SAVER CVE-2017-12186 in X-Resource CVE-2017-12187 in RENDER | |
|
2f2a50b9 | 2017-10-14 09:06:06 | MFC: Xext/shm: Validate shmseg resource id (CVE-2017-13721) Otherwise it can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client. | |
|
fd18c20e | 2016-10-11 22:14:30 | regen | |
|
6e1bcfb3 | 2016-08-09 18:59:50 | Update to xserver 1.18.4 tested by krw@ and dcoppa@ ok dcoppa@ | |
|
e927c03e | 2016-05-29 12:02:34 | Update to xserver 1.18.3. Tested by shadchin@ and naddy@. Note that indirect GLX is now disbled by default. | |
|
4c6a4e1e | 2015-11-07 16:48:51 | Update to xserver 1.17.4. tested by naddy@ | |
|
86ea9f12 | 2015-09-16 19:10:19 | Update to xserver 1.17.2. tested by dcoppa@, jsg@, jasper@ & naddy@ | |
 |
a77282ed | 2015-02-09 09:45:32 | Use __MAP_NOFAULT to map shared memory passed through file descriptors. This completely avoids the risk of getting killed by a signal because the backing storage isn't there. Use the __-prefixed name for now, as we might still change the name. ok deraadt@, matthieu@ | |
|
797ed933 | 2014-12-09 17:58:52 | Protocol handling issues in X Window System servers One year after Ilja van Sprundel, discovered and reported a large number of issues in the way the X server code base handles requests from X clients, they have been fixed. | |
|
1cfce7c2 | 2014-11-22 08:33:45 | Update to xserver 1.16.2 | |
|
4f58590a | 2014-09-27 17:52:59 | Update to xserver 1.16.1. Tested by naddy@, jsg@ & kettenis@ | |
|
3bbfe7b1 | 2014-05-02 19:27:46 | Update to xserver 1.15.1. Tested by at least ajacoutot@, dcoppa@ & jasper@ | |
|
8742d82e | 2013-12-28 14:40:01 | Update to xserver 1.14.5 | |
|
29c59cee | 2013-12-15 11:31:09 | Avoid timeouts of ULONG_MAX milliseconds. Stops the X server from crashing with "select returned EINVAL" messages. ok matthieu@ | |
|
511a911d | 2013-12-08 10:53:01 | Update to xserver 1.14.4 | |
|
5ae225f3 | 2013-09-28 15:36:30 | Update to xserver 1.14.3 | |
|
577763cd | 2013-08-24 19:44:25 | Uodate to xserver 1.14.2. Tested by krw@, shadchin@, todd@ | |
|
adec87cf | 2013-06-07 17:28:45 | Update to X server 1.14.1. Tested by many during t2k13. Thanks. | |
|
e26a212f | 2012-10-27 14:52:25 | Regen autotools build system with a clean environment. It was previously generated with a config pointing to OpenBSD's libtool which is not ready yet. | |
|
58d9658d | 2012-10-14 08:59:33 | regen | |
|
eb59960f | 2012-08-05 18:14:29 | regen autotools | |
|
e60da745 | 2012-06-10 13:21:05 | Update to xserver 1.12.2. tested by naddy@, krw@, mpi@. | |
|
9576ef22 | 2012-01-31 07:52:35 | Update to xserver 1.11.4. tested by krw@, shadchin@. | |
|
4344ac39 | 2011-12-18 16:08:59 | Bugfix Update to xserver 1.11.3 | |
|
61a7d542 | 2011-11-05 13:32:40 | Update to xserver 1.11.2 | |
|
a4d630d0 | 2011-06-29 19:57:45 | regen | |
|
4a238ea6 | 2011-04-02 16:08:38 | Update to xserver 1.9.5. Tested by jasper@, ajacoutot@ and krw@ | |
|
90f7a984 | 2011-04-01 21:24:37 | Xext: fix test on extension number for the swapped case. | |
|
dd56fb17 | 2010-12-21 20:10:44 | Update to xorg-server 1.9.3. Tested by japser@, landry@ and ajacoutot@ in various configurations. | |
|
42826119 | 2010-12-05 15:36:02 | Upgrade to xorg-server 1.9.2. Tested by ajacoutot@, krw@, shadchin@ and jasper@ on various configurations including multihead with both zaphod and xrandr. | |
|
d57b1a14 | 2010-09-01 13:43:24 | regen (yes lots of files, since util-macros has been updated). | |
|
95d684a0 | 2010-07-27 19:02:24 | Update to xserver 1.8. Tested by many. Ok oga@, todd@. | |
|
b855bc3c | 2010-04-27 20:12:19 | cope with the xinerama headers cleanup. From xserver git repository. | |
|
49012820 | 2010-04-13 19:54:46 | Add a configure test for newer proto headers and use it to enable building xserver 1.6 with those headers. ok oga@. | |
|
8542099f | 2009-10-31 14:09:43 | Update to server 1.6.5. | |
|
88f6f3ea | 2009-09-06 19:44:18 | update to xserver 1.6.4rc1. Tested by many, ok oga@. | |
|
60021fe9 | 2008-11-02 15:26:08 | xserver 1.5.2. tested by ckuethe@, oga@, and others. | |
|
2e211b41 | 2008-06-17 21:53:45 | CVE-2008-1379 - MIT-SHM arbitrary memory read. (This patch was missing form the bunch of security patches committed on june 11. noticed by brad@). | |
|
97eda178 | 2008-06-15 00:17:32 | Update to xserver 1.4.2. Tested by landry@, ckuethe@, jsing@ mbalmer@. | |
|
52218799 | 2008-06-11 15:39:26 | Fixes for various integer overflow problems from X.Org: CVE-2008-2360 - RENDER Extension heap buffer overflow CVE-2008-2361 - RENDER Extension crash CVE-2008-2362 - RENDER Extension memory corruption CVE-2008-1379 - MIT-SHM arbitrary memory read CVE-2008-1377 - RECORD and Security extensions memory corruption | |
|
48bc8229 | 2008-05-24 20:39:01 | regen. | |
|
807e8fa5 | 2008-02-20 21:29:42 | Fix from X.Org repository: untrusted access broken in 7.3. | |
|
192dfccc | 2008-01-21 21:38:22 | 3rd try... CVE-2007-6429: Always test for size+offset wrapping. From X.Org. | |
|
68a7d32f | 2008-01-18 20:53:51 | Previous shm fix for CVE-2007-6429 was incorrect. Don't spuriously reject <8bpp shm pixmaps. From X.Org repository. | |
|
5215f234 | 2008-01-17 15:43:43 | Fix from X.Org for CVE-2007-6429 - MIT-SHM and EVI extensions integer overflows. | |
|
af2f977c | 2008-01-17 15:43:06 | Fix from X.Org for CVE-2007-6428 - TOG-cup extension memory corruption. | |
|
19e04f54 | 2008-01-17 15:41:53 | Fix from X.Org for CVE-2007-5958 - File existence disclosure. | |
 |
6189593a | 2008-01-04 14:01:04 | regen | |
|
67952fe2 | 2007-12-13 21:51:47 | Add back files that I removed before import to minimize cvs noise. That was a mistake. sorry. | |
|
b29102d7 | 2007-12-13 21:47:48 | Merge xserver 1.4.0.90. This includes fixes for some of the regressions introduced by xserver 1.4, such as the keyboad caps/num-lock leds updates. Tested by many. | |
|
2fcd9ee6 | 2007-12-13 21:06:02 | xserver 1.4.0.90 | |
|
fa710f40 | 2007-11-24 19:04:00 | merge xserver 1.4, 1st pass | |
|
b14d6de7 | 2007-11-24 17:55:21 | xserver 1.4 | |
|
82be1a48 | 2007-05-31 03:37:55 | Remove debugging code that was not supposed to leak in. | |
|
c7ebbd40 | 2007-05-25 16:20:45 | regen | |
|
fdc55d19 | 2007-04-17 22:06:12 | regen | |
 |
5a595260 | 2007-04-04 02:50:29 | XC-MISC CVE-2007-1003 XC-MISC Extension ProcXCMiscGetXIDList Memory Corruption Vulnerability This vulnerability was discovered by Sean Larsson, iDefense Labs. from matthieu@ | |
|
6637a9a3 | 2007-03-18 22:29:12 | regen with automake 1.9.6p2 | |
|
9dc39873 | 2007-03-03 11:33:26 | regen | |
|
c3d03022 | 2006-12-16 20:59:13 | - merge xserver 1.1.99.903 - regen generated files | |
|
11e9fb01 | 2006-11-28 20:33:06 | regen | |
|
97bfc260 | 2006-11-26 19:09:56 | regen with OpenBSD autotools | |
|
889b8606 | 2006-11-26 18:13:41 | Importing xserver from X.Org 7.2RC2 |