summaryrefslogtreecommitdiff
path: root/lib/libXi/src
AgeCommit message (Collapse)Author
2024-11-05Update to libXi 1.8.2.Matthieu Herrb
The fix for double alignment on 32bits machines with strict constraints was already committed.
2023-08-02Add pad_to_double() when the function allocates memories for 'double'Kenji Aoyama
internally. The functions wireToRawEvent() and copyRawEvent() get memories first, then allocate memory blocks sequentially for several objects include 'double' from there. On m88k, the memory area for 'double' should be 8-byte aligned, but sizeof(XIRawEvent) is 60 and sizeof(out->valuators.mask_len) is 8. In this case, allocated 'double' memory was not 8-byte aligned. Because of this, 'xeyes' on luna88k was aborted with Bus Error right after moving mouse for several years with sys/arch/m88k/m88k/trap.c r.127. Tested by me on luna88k, ok matthieu@
2023-07-03Update to libXi 1.8.1Matthieu Herrb
2021-11-11Update to libXi 1.8Matthieu Herrb
2020-01-04Update to libXi 1.7.10. Tested by krw@ and naddy@Matthieu Herrb
2017-02-19Update to libXi 1.7.9Matthieu Herrb
2016-11-03Update to libXi 1.7.8Matthieu Herrb
2016-10-04Properly validate server responsesMatthieu Herrb
By validating length fields from server responses, out of boundary accesses and endless loops can be mitigated. From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016
2016-08-06Update to libXi 1.7.6Matthieu Herrb
2014-09-28Update to libXi 1.7.4Matthieu Herrb
2014-05-09Update to libXi 1.7.2.Matthieu Herrb
Tested by ajacoutot@ against gnome.
2013-05-31Update to libXi 1.6.3rc1Matthieu Herrb
2013-05-23Merge upstream fixes for several X libs vulnerabilitiesMatthieu Herrb
discovered by Ilja van Sprundel. CVE-2013-1981 X.org libX11 1.5.99.901 (1.6 RC1) integer overflows CVE-2013-1982 X.org libXext 1.3.1 integer overflows CVE-2013-1983 X.org libXfixes 5.0 integer overflows CVE-2013-1984 X.org libXi 1.7.1 integer overflows CVE-2013-1985 X.org libXinerama 1.1.2 integer overflows CVE-2013-1986 X.org libXrandr 1.4.0 integer overflows CVE-2013-1987 X.org libXrender 0.9.7 integer overflows CVE-2013-1988 X.org libXRes 1.0.6 integer overflows CVE-2013-1989 X.org libXv 1.0.7 integer overflows CVE-2013-1990 X.org libXvMC 1.0.7 integer overflows CVE-2013-1991 X.org libXxf86dga 1.1.3 integer overflows CVE-2013-1992 X.org libdmx 1.1.2 integer overflows CVE-2013-1994 X.org libchromeXvMC & libchromeXvMCPro in openChrome 0.3.2 integer overflows CVE-2013-1995 X.org libXi 1.7.1 sign extension issues CVE-2013-1996 X.org libFS 1.0.4 sign extension issues CVE-2013-1997 X.org libX11 1.5.99.901 (1.6 RC1) buffer overflows CVE-2013-1998 X.org libXi 1.7.1 buffer overflows CVE-2013-1999 X.org libXvMC 1.0.7 buffer overflows CVE-2013-2000 X.org libXxf86dga 1.1.3 buffer overflows CVE-2013-2001 X.org libXxf86vm 1.1.2 buffer overflows CVE-2013-2002 X.org libXt 1.1.3 buffer overflows CVE-2013-2003 X.org libXcursor 1.1.13 integer overflows CVE-2013-2004 X.org libX11 1.5.99.901 (1.6 RC1) unbounded recursion CVE-2013-2005 X.org libXt 1.1.3 memory corruption CVE-2013-2066 X.org libXv 1.0.7 buffer overflows
2012-06-11Update to libXi 1.6.1Matthieu Herrb
2012-01-19Force class alignment to a multiple of sizeof(XID): fixes a SIGBUSDavid Coppa
crash on sparc64. Upstream git commit 07ced7b48219e3bc0c98806f3d7106f86d1b2ca0 OK matthieu@
2011-12-20Update to libXi 1.4.5.Matthieu Herrb
2011-12-17Update to libXi 1.4.4.Matthieu Herrb
2011-07-02Update to libXi 1.4.3.Matthieu Herrb
This contains more doc fixes and a few more bug fixes.
2011-07-02Update to libXi 1.4.2.Matthieu Herrb
Tested by ajacoutot@, jasper@, krw@, shadchin@. I believe that the bugs spotted by krw@ are fixed in an upcoming inputproto update.
2011-04-01Simpler fix for 64 bits architectures, suggested by Peter Hutterer:Matthieu Herrb
Just use Data() to send the xXIEventMask structure on the wire.
2011-03-27Ugly fix for libXi on sparc64.Matthieu Herrb
May change if upstreams fix it differently. Still broken on cross-endian remote connections though.
2011-03-18Force alignment with sizeof(Atom) for XIButtonClassInfo.Christian Weisgerber
From upstream; ok matthieu@
2010-11-11Update to libXi 1.4.0. small bug fixes plus doc/spec/autotools churn.Matthieu Herrb
2010-10-03regenMatthieu Herrb
2010-09-04Update to libXi 1.3.2Matthieu Herrb
2010-05-21regenMatthieu Herrb
2010-05-18Update to libXi 1.3. Tested on a bulk ports build by naddy@.Matthieu Herrb
2009-05-02update to libXi 1.2.1Matthieu Herrb
2007-03-18regen with automake 1.9.6p2Matthieu Herrb
2007-03-15regenMatthieu Herrb
2006-11-26regen with OpenBSD autotoolsMatthieu Herrb
2006-11-25import from X.Org 7.2RC2Matthieu Herrb