xenocara - Xenocara

Age	Commit message (Collapse)	Author
2016-11-03	Update to libXrender 0.9.10	Matthieu Herrb

2016-10-11	regen	Matthieu Herrb

2016-10-04	Validate lengths while parsing server data.	Matthieu Herrb
	Individual lengths inside received server data can overflow the previously reserved memory. It is therefore important to validate every single length field to not overflow the previously agreed sum of all invidual length fields. From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016
2016-10-04	Avoid OOB write in XRenderQueryFilters	Matthieu Herrb
	The memory for filter names is reserved right after receiving the reply. After that, filters are iterated and each individual filter name is stored in that reserved memory. The individual name lengths are not checked for validity, which means that a malicious server can reserve less memory than it will write to during each iteration. From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016
2015-05-10	Update to libXrender 0.9.9	Matthieu Herrb

2013-08-13	Bump the major on every single base library. There are a couple	Philip Guenther
	not bumped by this that will be corrected soon. heavy lifting by todd@
2013-06-14	Update to libXrender 0.9.8.	Matthieu Herrb

2013-05-23	Merge upstream fixes for several X libs vulnerabilities	Matthieu Herrb
	discovered by Ilja van Sprundel. CVE-2013-1981 X.org libX11 1.5.99.901 (1.6 RC1) integer overflows CVE-2013-1982 X.org libXext 1.3.1 integer overflows CVE-2013-1983 X.org libXfixes 5.0 integer overflows CVE-2013-1984 X.org libXi 1.7.1 integer overflows CVE-2013-1985 X.org libXinerama 1.1.2 integer overflows CVE-2013-1986 X.org libXrandr 1.4.0 integer overflows CVE-2013-1987 X.org libXrender 0.9.7 integer overflows CVE-2013-1988 X.org libXRes 1.0.6 integer overflows CVE-2013-1989 X.org libXv 1.0.7 integer overflows CVE-2013-1990 X.org libXvMC 1.0.7 integer overflows CVE-2013-1991 X.org libXxf86dga 1.1.3 integer overflows CVE-2013-1992 X.org libdmx 1.1.2 integer overflows CVE-2013-1994 X.org libchromeXvMC & libchromeXvMCPro in openChrome 0.3.2 integer overflows CVE-2013-1995 X.org libXi 1.7.1 sign extension issues CVE-2013-1996 X.org libFS 1.0.4 sign extension issues CVE-2013-1997 X.org libX11 1.5.99.901 (1.6 RC1) buffer overflows CVE-2013-1998 X.org libXi 1.7.1 buffer overflows CVE-2013-1999 X.org libXvMC 1.0.7 buffer overflows CVE-2013-2000 X.org libXxf86dga 1.1.3 buffer overflows CVE-2013-2001 X.org libXxf86vm 1.1.2 buffer overflows CVE-2013-2002 X.org libXt 1.1.3 buffer overflows CVE-2013-2003 X.org libXcursor 1.1.13 integer overflows CVE-2013-2004 X.org libX11 1.5.99.901 (1.6 RC1) unbounded recursion CVE-2013-2005 X.org libXt 1.1.3 memory corruption CVE-2013-2066 X.org libXv 1.0.7 buffer overflows
2012-03-14	Regen with util-macros 1.17. Fixes configure on landisk (and probably the	Matthieu Herrb
	other gcc3 architectures).
2012-03-10	update to libXrender 0.9.7	Matthieu Herrb

2010-07-17	update to libXrender 0.9.6	Matthieu Herrb

2009-10-31	missed files in libXrender 0.9.5 update.	Matthieu Herrb

2009-10-31	update to libXrender 0.9.5	Matthieu Herrb

2008-03-15	Regen with autoconf 2.59-p2, with AM_SANITY check zapped.	Matthieu Herrb

2007-09-30	merge libXrender 0.9.4	Matthieu Herrb

2007-07-29	regen	Matthieu Herrb

2007-04-14	regen with libtool 1.5.22p10 and metaauto 0.7	Matthieu Herrb

2007-03-25	regen with libtool 1.5.22p9	Matthieu Herrb

2007-03-18	regen with automake 1.9.6p2	Matthieu Herrb

2007-03-15	regen	Matthieu Herrb

2007-03-15	Bump major of shared libs that depend on libX11 (which already got bumped).	Matthieu Herrb
	ok todd@
2006-11-28	regen	Matthieu Herrb

2006-11-28	Try to prevent endless regeneration of Makefile.in caused to RCS Id expansion.	Matthieu Herrb

2006-11-27	regenerate with OpenBSD autotools	Matthieu Herrb

2006-11-26	regen with OpenBSD autotools	Matthieu Herrb

2006-11-26	Build infrastructure for lib	Matthieu Herrb

2006-11-25	import from X.Org 7.2RC1	Matthieu Herrb