summaryrefslogtreecommitdiff
path: root/xserver
AgeCommit message (Collapse)Author
2023-01-22Merge xserver 21.1.6.Matthieu Herrb
Includes a few fixes to the security patches already committed.
2023-01-22Add back the meson build system to xserver.Matthieu Herrb
Not having those file only create noise when merging upstream releases.
2022-12-14Fix serveral X server input validation errors that can cause varios issues:Matthieu Herrb
* CVE-2022-46340/ZDI-CAN-19265: X.Org Server XTestSwapFakeInput stack overflow * CVE-2022-46341/ZDI-CAN-19381: X.Org Server XIPassiveUngrab out-of-bounds access * CVE-2022-46342/ZDI-CAN-19400: X.Org Server XvdiSelectVideoNotify use-after-free * CVE-2022-46343/ZDI-CAN-19404: X.Org Server ScreenSaverSetAttributes use-after-free * CVE-2022-46344/ZDI-CAN-19405: X.Org Server XIChangeProperty out-of-bounds access * CVE-2022-46283/ZDI-CAN-19530: X.Org Server XkbGetKbdByName use-after-free
2022-11-11Don't crash if the client argv or argv[0] is NULL.Matthieu Herrb
Report from bauerm at pestilenz dot org. With help from and ok millert@
2022-08-31Update xserver to version 21.1.4.Matthieu Herrb
The security patches were already committed as part of july 24 errata. This brings a few other bug fixes. Tested by Walter Alejandro Iglesias.
2022-07-12MFC: Multiple input validation failures in X server extensionsMatthieu Herrb
CVE-2022-2319/ZDI-CAN-16062 ProcXkbSetGeometry Out-Of-Bounds Access CVE-2022-2320/ZDI-CAN-16070 ProcXkbSetDeviceInfo Out-Of-Bounds Access
2022-02-20Sync with xorg-server 21.1.3.Matthieu Herrb
This does *not* include the commit that reverts the new computation of the screen resolution from dimensions returned by the screen since many of you told they prefer the new behaviour from 21.1.1. This is going to be discussed again before 7.1
2022-02-03remove 0x2972 from the intel gen 2 and 3 listJonathan Gray
0x2972 is 946GZ which is gen 4
2021-12-27Recommit: compiler.h: don't define inb/outb and friends on mipsVisa Hankala
From Julien Cristau 0148a15da1616a868d71abe1b56e3f28cc79533c in xserver git without arm_video.c changes. OK matthieu@
2021-12-14render: Fix out of bounds access in SProcRenderCompositeGlyphs()Matthieu Herrb
ZDI-CAN-14192, CVE-2021-4008
2021-12-14Xext: Fix out of bounds access in SProcScreenSaverSuspend()Matthieu Herrb
ZDI-CAN-14951, CVE-2021-4010
2021-12-14xfixes: Fix out of bounds access in *ProcXFixesCreatePointerBarrier()Matthieu Herrb
ZDI-CAN-14950, CVE-2021-4009
2021-12-14record: Fix out of bounds access in SwapCreateRegister()Matthieu Herrb
ZDI-CAN-14952, CVE-2021-4011
2021-12-06when xf86CrtcConfigPrivateIndex==-1 XF86_CRTC_CONFIG_PTR() causes an out ofMatthieu Herrb
bounds read. White-space fix and ok jsg@
2021-12-06Initialize mode->name for modes generated by libxcvt.Matthieu Herrb
ok jsg@ on the upstream merge request.
2021-12-03don't free uninitialised pointers in glamorJonathan Gray
Attempting to run fvwm on a x61/965gm with xserver 1.21.1 with the modesetting driver on amd64 would cause the xserver to reliably crash. problem introduced upstream in 2906ee5e4 ("glamor: Fix leak in glamor_build_program()") which was backported to the 1.21 branch. ok matthieu@
2021-11-17Use the InternalEvent event structure in more places in events handlers.Matthieu Herrb
This fixes a crash when a DeviceEvent struct converted to InteralEvent was beeing copied as InternalEvent (and thus causing out of bounds reads) in ActivateGrabNoDelivery()
2021-11-11Update to xserver 21.1.1Matthieu Herrb
2021-11-11Update to xserver 21.1.0Matthieu Herrb
2006-11-26Importing xserver from X.Org 7.2RC2Matthieu Herrb
2006-11-26Importing xserver from X.Org 7.2RC2Matthieu Herrb
2021-09-06missing pathnames on unveil() errorTheo de Raadt
2021-09-03Update to xserver 1.20.13.Matthieu Herrb
2021-08-11GetLocalClientCreds: prefer getsockopt(,SO_PEERCRED,) to getpeereid()Matthieu Herrb
This adds the pid of the local clients to LocalLientCred. ok espie@
2021-06-30Close the console fd after probing if it's a wscons, even it fails.Matthieu Herrb
This avoids keeping an open file descriptor on machines where /dev/console is not a wsdisplay device.
2021-06-15Initial attempt to build xserver for riscv64Dale Rahn
ok matthieu@
2021-04-13Fix XChangeFeedbackControl() request underflow.Matthieu Herrb
CVE-2021-3472 / ZDI-CAN-1259 Reported by Jan-Niklas Sohn via Trend Micro.
2021-03-13compiler.h: don't define inb/outb and friends on mipsVisa Hankala
From Julien Cristau 0148a15da1616a868d71abe1b56e3f28cc79533c in xserver git without arm_video.c changes. Fixes clang 11 build on mips64. Input and OK jsg@
2021-03-13Avoid sequences of malloc(0) / free() by checking the length.Matthieu Herrb
b2d96b5cd459963a9587ee9c86afc9266ba3d02b in xserver git originally from deraadt@
2021-02-26record: Fix undefined memcpy in RecordAClientStateChangeJonathan Gray
From Adam Jackson f44ac101c523a0439bd1a864850e3c1a4e154549 in xserver git avoids a large number of malloc(0) calls ok deraadt@ who had almost the same diff
2021-02-20change from /dev/drm to /dev/dri/ in xenocaraJonathan Gray
ok matthieu@ kettenis@
2021-02-12don't fatally error if unveil(2) sets ENOENTJonathan Gray
This occurs when trying to unveil a /dev/dri/ node when the directory does not exist.
2021-02-12add /dev/dri/card[0-3] to allowed devicesJonathan Gray
2021-01-21Safer workaround for the "kame hack": only override sin6_scope_id if zeroJeremie Courreges-Anglas
The assumption is that if sin6_scope_id is set, then the interface index is no longer embedded in the address. ok claudio@ matthieu@
2021-01-10try to handle running out of file descriptors by refusing client connectionsRobert Nagy
in case the X server is near the limit and only allow connections again if there are resources freed up this is done by checking the amount of currently used FDs + a reserve and comparing that to the FD limit with help from benno@, millert@, florian@ ok matthieu@, benno@
2021-01-10Add a root window property with the console device.Matthieu Herrb
2020-12-12Update X server to version 1.20.10. Tested by jsg@ and naddy@Matthieu Herrb
2020-12-01Check SetMap request length carefully.Matthieu Herrb
Avoid out of bounds memory accesses on too short requests. ZDI-CAN 11572 / CVE-2020-14360 Reported by Jan-Niklas Sohn working with Trend Micro Zero Day Initiative
2020-12-01Fix XkbSetDeviceInfo() and SetDeviceIndicators() heap overflowsMatthieu Herrb
ZDI-CAN 11389 / CVE-2020-25712 Fix from Jan-Niklas Sohn working with Trend Micro.
2020-08-28build with --disable-dri3 when XENOCARA_BUILD_DRI is "no"Jonathan Gray
fixes build breakage on alpha reported by deraadt@
2020-08-25Fix integer underflow in XRecordRegisterClients()Matthieu Herrb
Reported by Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2020-08-25Fix integer underflow in XkbSelectEvents()Matthieu Herrb
Reported by Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2020-08-25Fix an integer underflow in XIChangeHierarchy()Matthieu Herrb
Reported by Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2020-08-25Correct bounds checking in XkbSetNames()Matthieu Herrb
Reported by Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2020-07-31fix for X Server Pixel Data Uninitialized Memory Information DisclosureMatthieu Herrb
CVE-2020-14347 This vulnerability was discovered and reported to X.Org by Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2020-06-14sync white space with upstream. No code change.Matthieu Herrb
2020-06-12revert local change which removed -retro flag and adjust -br toJoshua Stein
properly override our default behavior of stippled root. no objection from deraadt and kettenis
2020-04-20Release unused filedescriptors in the privileged X server process.Matthieu Herrb
There is no reason to keep /dev/pci* and /dev/ttyC* open in this process. pointed to by deraadt. ok kettenis@ deraadt@
2020-04-18Remove unused files.Matthieu Herrb
2020-04-14dix: do not send focus event when grab actually does not changeMatthieu Herrb
upstream commit 364d64981549544213e2bca8de6ff8a5b2b5a69e Fixes an issue in xserver 1.20 where some applications were loosing focus. Naddy@ reported it appeards in SDL 1.2 games (burgerspace). tested and ok naddy@
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-12 01:15:33 +0000