| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-10-04 | Properly validate server responses | Matthieu Herrb | |
| By validating length fields from server responses, out of boundary accesses and endless loops can be mitigated. From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016 | |||
| 2016-10-04 | Integer overflow on illegal server response | Matthieu Herrb | |
| The 32 bit field "rep.length" is not checked for validity, which allows an integer overflow on 32 bit systems. A malicious server could send INT_MAX as length, which gets multiplied by the size of XRectangle. In that case the client won't read the whole data from server, getting out of sync. From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016 | |||
| 2016-10-04 | Validation of server responses in XGetImage() | Matthieu Herrb | |
| Check if enough bytes were received for specified image type and geometry. Otherwise GetPixel and other functions could trigger an out of boundary read later on. From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016 | |||
| 2016-10-04 | The validation of server responses avoids out of boundary accesses. | Matthieu Herrb | |
| From Tobias Stoeckmann / Xorg Securiry adrvisory Oct 4, 2016. | |||
| 2016-10-03 | revert pixman-vmx.c to the version of pixman-0.32.8. | Matthieu Herrb | |
| gcc 4.2 is not able to compile the new version. XXX switch back to 0.34 once macppc switches to clang. | |||
| 2016-10-02 | Fix installation of libXaw.so.15.0 link. | Matthieu Herrb | |
| 2016-10-02 | regen | Matthieu Herrb | |
| 2016-10-02 | Handle the libXaw.so.xx.y symlink in afterinstall: in Makefile.bsd-wrapper | Matthieu Herrb | |
| No more diffs with upstreams in autoconf files; owneship of links for non-root/noperm installs is handled too. | |||
| 2016-10-02 | regen | Matthieu Herrb | |
| 2016-10-02 | Remove local patch for platforms without shared libs | Matthieu Herrb | |
| 2016-10-02 | Reduce diffs with upstreams | Matthieu Herrb | |
| 2016-10-02 | Set owner and group of the XScreenSaver(3) manpage symlink. | Theo Buehler | |
| Needed for noperm release. ok matthieu | |||
| 2016-10-02 | chown -h symbolic links in conf.d. Needed for noperm release. | Theo Buehler | |
| There are a few remaining symlinks that will be fixed later. ok matthieu | |||
| 2016-10-01 | Update to pixman 0.34.0. | Matthieu Herrb | |
| 2016-09-25 | pixman: upstreams tarballs contain an empty ChangeLog. | Matthieu Herrb | |
| So remove what we have here. Less gratuitous local changes. | |||
| 2016-09-02 | Update to libXfont 1.5.2 | Matthieu Herrb | |
| 2016-09-02 | Update to xcb-proto/libxcb 1.12. "Just commit it" naddy@ | Matthieu Herrb | |
| 2016-09-01 | remove sparc | Jonathan Gray | |
| 2016-08-09 | extra space | Theo de Raadt | |
| 2016-08-09 | Update to fontconfig 2.12.1. | Matthieu Herrb | |
| Tested by krw@, dcoppa@, ok dcoppa@. | |||
| 2016-08-09 | just dump the major. freetype changes probably extend beyond just the | Ted Unangst | |
| obviously visible symbol additions. | |||
| 2016-08-09 | Re-add binary files using 'cvs add -kb' | David Coppa | |
| 2016-08-09 | Remove binary files | David Coppa | |
| 2016-08-09 | Update to freetype-doc-2.6.5 | David Coppa | |
| 2016-08-09 | Update to FreeType 2.6.5 | David Coppa | |
| ok matthieu@ | |||
| 2006-11-25 | Import freetype 2.2.1 | Matthieu Herrb | |
| 2016-08-06 | Update to libXi 1.7.6 | Matthieu Herrb | |
| 2016-08-06 | Update to libXfixes 5.0.2. No functional changes. | Matthieu Herrb | |
| 2016-07-25 | Disable the code that allocates W|X memory. There is fallback code that | Mark Kettenis | |
| gets used if allocating W|X memory fails, which is probably a bit slower. However, that is much better than commit a W^X violation which currently gets you killed. ok jca@ | |||
| 2016-05-30 | Update to freetype-doc-2.6.3 | David Coppa | |
| 2016-05-30 | "javascript" renamed to "js" | David Coppa | |
| 2016-05-29 | bump freetype major | David Coppa | |
| 2016-05-29 | Bump following freetype update. | David Coppa | |
| Suggested by sthen@ ok sthen@, naddy@, matthieu@ | |||
| 2016-05-29 | Update to FreeType 2.6.3 | David Coppa | |
| ok sthen@, naddy@, matthieu@ | |||
| 2016-05-29 | Merge Mesa 11.2.2 | Jonathan Gray | |
| 2015-11-22 | import Mesa 11.0.6 | Jonathan Gray | |
| 2016-05-29 | Import Mesa 11.2.2 | Jonathan Gray | |
| 2015-11-22 | import Mesa 11.0.6 | Jonathan Gray | |
| 2015-11-22 | import Mesa 11.0.6 | Jonathan Gray | |
| 2016-04-20 | Make sure we authenticate before calling loader_get_driver_for_fd(). This | Mark Kettenis | |
| function invokes some drm ioctls that require the client to be authenticated. tested by espie@ ok jsg@ | |||
| 2016-04-01 | remove XENOCARA_BUILD_PIXMAN all platforms now build pixman | Jonathan Gray | |
| 2016-03-20 | Merge libdrm 2.4.67 | Jonathan Gray | |
| 2016-03-20 | Import libdrm 2.4.67 | Jonathan Gray | |
| 2016-03-18 | test some more __ARM_ARCH_* builtin defines | Jonathan Gray | |
| 2016-03-13 | Enable atomics operations for fontconfig on mips64 and mips64el. | Matthieu Herrb | |
| ok kettenis@ | |||
| 2016-03-11 | Remove support vax and XENOCARA_HAVE_SHARED_LIBS scaffolding. | Okan Demirmen | |
| ok matthieu@ | |||
| 2016-03-06 | Update to libXrandr 1.5.0 | Matthieu Herrb | |
| 2016-02-28 | Back out rev 1.3 and use __sync builtins on alpha. gcc no longer | Jonathan Gray | |
| triggers an ICE with p_atomic_cmpxchg/__sync_val_compare_and_swap. Tested by matthieu. | |||
| 2016-02-20 | On alpha with -O2 gcc gets an ICE on 2 files. | Matthieu Herrb | |
| With help of jsg@ | |||
| 2016-02-20 | alpha lacks p_atomic_cmpxchg() switch to non atomic ops | Matthieu Herrb | |
 |
index : xenocara | |
| Xenocara |
| summaryrefslogtreecommitdiff |