summaryrefslogtreecommitdiff
path: root/xserver/Xext
AgeCommit message (Collapse)Author
2017-12-08Update to xserver 1.19.5.Matthieu Herrb
Tested by bru@, jsg@ and others
2017-10-14MFC: hw/xfree86: unvalidated lengthsMatthieu Herrb
This addresses: CVE-2017-12180 in XFree86-VidModeExtension CVE-2017-12181 in XFree86-DGA CVE-2017-12182 in XFree86-DRI
2017-10-14MFC: Unvalidated lengthsMatthieu Herrb
v2: Add overflow check and remove unnecessary check (Julien Cristau) This addresses: CVE-2017-12184 in XINERAMA CVE-2017-12185 in MIT-SCREEN-SAVER CVE-2017-12186 in X-Resource CVE-2017-12187 in RENDER
2017-10-14MFC: Xext/shm: Validate shmseg resource id (CVE-2017-13721)Matthieu Herrb
Otherwise it can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client.
2016-10-11regenMatthieu Herrb
2016-08-09Update to xserver 1.18.4Matthieu Herrb
tested by krw@ and dcoppa@ ok dcoppa@
2016-05-29Update to xserver 1.18.3. Tested by shadchin@ and naddy@.Matthieu Herrb
Note that indirect GLX is now disbled by default.
2015-11-07Update to xserver 1.17.4.Matthieu Herrb
tested by naddy@
2015-09-16Update to xserver 1.17.2. tested by dcoppa@, jsg@, jasper@ & naddy@Matthieu Herrb
2015-02-09Use __MAP_NOFAULT to map shared memory passed through file descriptors. ThisMark Kettenis
completely avoids the risk of getting killed by a signal because the backing storage isn't there. Use the __-prefixed name for now, as we might still change the name. ok deraadt@, matthieu@
2014-12-09Protocol handling issues in X Window System serversMatthieu Herrb
One year after Ilja van Sprundel, discovered and reported a large number of issues in the way the X server code base handles requests from X clients, they have been fixed.
2014-11-22Update to xserver 1.16.2Matthieu Herrb
2014-09-27Update to xserver 1.16.1.Matthieu Herrb
Tested by naddy@, jsg@ & kettenis@
2014-05-02Update to xserver 1.15.1.Matthieu Herrb
Tested by at least ajacoutot@, dcoppa@ & jasper@
2013-12-28Update to xserver 1.14.5Matthieu Herrb
2013-12-15Avoid timeouts of ULONG_MAX milliseconds. Stops the X server from crashingMark Kettenis
with "select returned EINVAL" messages. ok matthieu@
2013-12-08Update to xserver 1.14.4Matthieu Herrb
2013-09-28Update to xserver 1.14.3Matthieu Herrb
2013-08-24Uodate to xserver 1.14.2. Tested by krw@, shadchin@, todd@Matthieu Herrb
2013-06-07Update to X server 1.14.1. Tested by many during t2k13. Thanks.Matthieu Herrb
2012-10-27Regen autotools build system with a clean environment.Matthieu Herrb
It was previously generated with a config pointing to OpenBSD's libtool which is not ready yet.
2012-10-14regenMatthieu Herrb
2012-08-05regen autotoolsMatthieu Herrb
2012-06-10Update to xserver 1.12.2. tested by naddy@, krw@, mpi@.Matthieu Herrb
2012-01-31Update to xserver 1.11.4. tested by krw@, shadchin@.Matthieu Herrb
2011-12-18Bugfix Update to xserver 1.11.3Matthieu Herrb
2011-11-05Update to xserver 1.11.2Matthieu Herrb
2011-06-29regenMatthieu Herrb
2011-04-02Update to xserver 1.9.5. Tested by jasper@, ajacoutot@ and krw@Matthieu Herrb
2011-04-01Xext: fix test on extension number for the swapped case.Matthieu Herrb
2010-12-21Update to xorg-server 1.9.3. Tested by japser@, landry@ and ajacoutot@Matthieu Herrb
in various configurations.
2010-12-05Upgrade to xorg-server 1.9.2.Matthieu Herrb
Tested by ajacoutot@, krw@, shadchin@ and jasper@ on various configurations including multihead with both zaphod and xrandr.
2010-09-01regen (yes lots of files, since util-macros has been updated).Matthieu Herrb
2010-07-27Update to xserver 1.8. Tested by many. Ok oga@, todd@.Matthieu Herrb
2010-04-27cope with the xinerama headers cleanup. From xserver git repository.Matthieu Herrb
2010-04-13Add a configure test for newer proto headers and use it to enableMatthieu Herrb
building xserver 1.6 with those headers. ok oga@.
2009-10-31Update to server 1.6.5.Matthieu Herrb
2009-09-06update to xserver 1.6.4rc1. Tested by many, ok oga@.Matthieu Herrb
2008-11-02xserver 1.5.2. tested by ckuethe@, oga@, and others.Matthieu Herrb
2008-06-17CVE-2008-1379 - MIT-SHM arbitrary memory read.Matthieu Herrb
(This patch was missing form the bunch of security patches committed on june 11. noticed by brad@).
2008-06-15Update to xserver 1.4.2. Tested by landry@, ckuethe@, jsing@ mbalmer@.Matthieu Herrb
2008-06-11Fixes for various integer overflow problems from X.Org:Matthieu Herrb
CVE-2008-2360 - RENDER Extension heap buffer overflow CVE-2008-2361 - RENDER Extension crash CVE-2008-2362 - RENDER Extension memory corruption CVE-2008-1379 - MIT-SHM arbitrary memory read CVE-2008-1377 - RECORD and Security extensions memory corruption
2008-05-24regen.Matthieu Herrb
2008-02-20Fix from X.Org repository: untrusted access broken in 7.3.Matthieu Herrb
2008-01-213rd try... CVE-2007-6429: Always test for size+offset wrapping. From X.Org.Matthieu Herrb
2008-01-18Previous shm fix for CVE-2007-6429 was incorrect.Matthieu Herrb
Don't spuriously reject <8bpp shm pixmaps. From X.Org repository.
2008-01-17Fix from X.Org for CVE-2007-6429 - MIT-SHM and EVI extensions integer overflows.Matthieu Herrb
2008-01-17Fix from X.Org for CVE-2007-6428 - TOG-cup extension memory corruption.Matthieu Herrb
2008-01-17Fix from X.Org for CVE-2007-5958 - File existence disclosure.Matthieu Herrb
2008-01-04regenJoel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-29 16:06:08 +0000