summaryrefslogtreecommitdiff
path: root/xserver/Xext
AgeCommit message (Collapse)Author
2024-04-07Update to xserver 21.1.12Matthieu Herrb
The security patches were already commited, sync with the rest of the 21.1.12 relase.
2023-10-29Update to xserver 21.1.9.Matthieu Herrb
All the security patches have already been committed. Udated autoconf to 2.71 explains the large build infrastructure diff.
2023-01-22Merge xserver 21.1.6.Matthieu Herrb
Includes a few fixes to the security patches already committed.
2023-01-22Add back the meson build system to xserver.Matthieu Herrb
Not having those file only create noise when merging upstream releases.
2022-12-14Fix serveral X server input validation errors that can cause varios issues:Matthieu Herrb
* CVE-2022-46340/ZDI-CAN-19265: X.Org Server XTestSwapFakeInput stack overflow * CVE-2022-46341/ZDI-CAN-19381: X.Org Server XIPassiveUngrab out-of-bounds access * CVE-2022-46342/ZDI-CAN-19400: X.Org Server XvdiSelectVideoNotify use-after-free * CVE-2022-46343/ZDI-CAN-19404: X.Org Server ScreenSaverSetAttributes use-after-free * CVE-2022-46344/ZDI-CAN-19405: X.Org Server XIChangeProperty out-of-bounds access * CVE-2022-46283/ZDI-CAN-19530: X.Org Server XkbGetKbdByName use-after-free
2021-12-14Xext: Fix out of bounds access in SProcScreenSaverSuspend()Matthieu Herrb
ZDI-CAN-14951, CVE-2021-4010
2021-11-11Update to xserver 21.1.0Matthieu Herrb
2020-12-12Update X server to version 1.20.10. Tested by jsg@ and naddy@Matthieu Herrb
2019-12-12Update to X server 1.20.6. Tested by naddy@Matthieu Herrb
2019-07-27Update to xserver 1.20.5. Tested by jsg@Matthieu Herrb
2018-02-18Update to xserver 1.19.6. bug fix releaseMatthieu Herrb
2017-12-08Update to xserver 1.19.5.Matthieu Herrb
Tested by bru@, jsg@ and others
2017-10-14MFC: hw/xfree86: unvalidated lengthsMatthieu Herrb
This addresses: CVE-2017-12180 in XFree86-VidModeExtension CVE-2017-12181 in XFree86-DGA CVE-2017-12182 in XFree86-DRI
2017-10-14MFC: Unvalidated lengthsMatthieu Herrb
v2: Add overflow check and remove unnecessary check (Julien Cristau) This addresses: CVE-2017-12184 in XINERAMA CVE-2017-12185 in MIT-SCREEN-SAVER CVE-2017-12186 in X-Resource CVE-2017-12187 in RENDER
2017-10-14MFC: Xext/shm: Validate shmseg resource id (CVE-2017-13721)Matthieu Herrb
Otherwise it can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client.
2016-10-11regenMatthieu Herrb
2016-08-09Update to xserver 1.18.4Matthieu Herrb
tested by krw@ and dcoppa@ ok dcoppa@
2016-05-29Update to xserver 1.18.3. Tested by shadchin@ and naddy@.Matthieu Herrb
Note that indirect GLX is now disbled by default.
2015-11-07Update to xserver 1.17.4.Matthieu Herrb
tested by naddy@
2015-09-16Update to xserver 1.17.2. tested by dcoppa@, jsg@, jasper@ & naddy@Matthieu Herrb
2015-02-09Use __MAP_NOFAULT to map shared memory passed through file descriptors. ThisMark Kettenis
completely avoids the risk of getting killed by a signal because the backing storage isn't there. Use the __-prefixed name for now, as we might still change the name. ok deraadt@, matthieu@
2014-12-09Protocol handling issues in X Window System serversMatthieu Herrb
One year after Ilja van Sprundel, discovered and reported a large number of issues in the way the X server code base handles requests from X clients, they have been fixed.
2014-11-22Update to xserver 1.16.2Matthieu Herrb
2014-09-27Update to xserver 1.16.1.Matthieu Herrb
Tested by naddy@, jsg@ & kettenis@
2014-05-02Update to xserver 1.15.1.Matthieu Herrb
Tested by at least ajacoutot@, dcoppa@ & jasper@
2013-12-28Update to xserver 1.14.5Matthieu Herrb
2013-12-15Avoid timeouts of ULONG_MAX milliseconds. Stops the X server from crashingMark Kettenis
with "select returned EINVAL" messages. ok matthieu@
2013-12-08Update to xserver 1.14.4Matthieu Herrb
2013-09-28Update to xserver 1.14.3Matthieu Herrb
2013-08-24Uodate to xserver 1.14.2. Tested by krw@, shadchin@, todd@Matthieu Herrb
2013-06-07Update to X server 1.14.1. Tested by many during t2k13. Thanks.Matthieu Herrb
2012-10-27Regen autotools build system with a clean environment.Matthieu Herrb
It was previously generated with a config pointing to OpenBSD's libtool which is not ready yet.
2012-10-14regenMatthieu Herrb
2012-08-05regen autotoolsMatthieu Herrb
2012-06-10Update to xserver 1.12.2. tested by naddy@, krw@, mpi@.Matthieu Herrb
2012-01-31Update to xserver 1.11.4. tested by krw@, shadchin@.Matthieu Herrb
2011-12-18Bugfix Update to xserver 1.11.3Matthieu Herrb
2011-11-05Update to xserver 1.11.2Matthieu Herrb
2011-06-29regenMatthieu Herrb
2011-04-02Update to xserver 1.9.5. Tested by jasper@, ajacoutot@ and krw@Matthieu Herrb
2011-04-01Xext: fix test on extension number for the swapped case.Matthieu Herrb
2010-12-21Update to xorg-server 1.9.3. Tested by japser@, landry@ and ajacoutot@Matthieu Herrb
in various configurations.
2010-12-05Upgrade to xorg-server 1.9.2.Matthieu Herrb
Tested by ajacoutot@, krw@, shadchin@ and jasper@ on various configurations including multihead with both zaphod and xrandr.
2010-09-01regen (yes lots of files, since util-macros has been updated).Matthieu Herrb
2010-07-27Update to xserver 1.8. Tested by many. Ok oga@, todd@.Matthieu Herrb
2010-04-27cope with the xinerama headers cleanup. From xserver git repository.Matthieu Herrb
2010-04-13Add a configure test for newer proto headers and use it to enableMatthieu Herrb
building xserver 1.6 with those headers. ok oga@.
2009-10-31Update to server 1.6.5.Matthieu Herrb
2009-09-06update to xserver 1.6.4rc1. Tested by many, ok oga@.Matthieu Herrb
2008-11-02xserver 1.5.2. tested by ckuethe@, oga@, and others.Matthieu Herrb
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 11:27:49 +0000