qbit/xenocara
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
6,100 Commits 1 Branch 0 Tags 396 MiB
6906cf1bc7
Commit Graph

28 Commits

Author SHA1 Message Date
matthieu
fd18c20e72 regen 2016-10-11 22:14:30 +00:00
matthieu
ce0f69616f Out of boundary access and endless loop in libXtst 
A lack of range checks in libXtst allows out of boundary accesses.
The checks have to be done in-place here, because it cannot be done
without in-depth knowledge of the read data.

If XRecordStartOfData, XRecordEndOfData, or XRecordClientDied
without a client sequence have attached data, an endless loop would
occur. The do-while-loop continues until the current index reaches
the end. But in these cases, the current index would not be
incremented, leading to an endless processing.

From Tobias Stoeckmann / X.Org security advisory Oct 4, 2016
 2016-10-04 15:08:08 +00:00
matthieu
eb9a486a3e No NEWS is good NEWS - remove a bunch of files not present upstreams anymore 2015-05-10 09:51:55 +00:00
nick
a870156568 fix for man pages -- per roff(7), .so should be based in the parent man 
page directory.  fixes the following X man 3 pages:
  XTestCompareCurrentCursorWithWindow.man
  XTestCompareCursorWithWindow.man XTestDiscard.man
  XTestFakeButtonEvent.man XTestFakeKeyEvent.man
  XTestFakeMotionEvent.man XTestFakeRelativeMotionEvent.man
  XTestGrabControl.man XTestSetGContextOfGC.man
  XTestSetVisualIDOfVisual.man
 2014-06-20 00:38:53 +00:00
matthieu
61e2983c70 Fix a number of merge issues accumulated over the years 
- INSTALL often got doubled by patch
- empty AUTHORS files didn't get removed.
 2013-08-18 06:20:12 +00:00
guenther
b5bb12998e Bump the major on every single base library. There are a couple 
not bumped by this that will be corrected soon.

heavy lifting by todd@
 2013-08-13 07:07:07 +00:00
matthieu
531725f77c fix merge issues. 2013-05-31 18:38:23 +00:00
matthieu
eba72cf6d2 Update to libXtst 1.2.2 2013-05-31 15:41:54 +00:00
matthieu
52f6d0ba20 Merge upstream fixes for several X libs vulnerabilities 
discovered by Ilja van Sprundel.

CVE-2013-1981 X.org libX11 1.5.99.901 (1.6 RC1) integer overflows
CVE-2013-1982 X.org libXext 1.3.1 integer overflows
CVE-2013-1983 X.org libXfixes 5.0 integer overflows
CVE-2013-1984 X.org libXi 1.7.1 integer overflows
CVE-2013-1985 X.org libXinerama 1.1.2 integer overflows
CVE-2013-1986 X.org libXrandr 1.4.0 integer overflows
CVE-2013-1987 X.org libXrender 0.9.7 integer overflows
CVE-2013-1988 X.org libXRes 1.0.6 integer overflows
CVE-2013-1989 X.org libXv 1.0.7 integer overflows
CVE-2013-1990 X.org libXvMC 1.0.7 integer overflows
CVE-2013-1991 X.org libXxf86dga 1.1.3 integer overflows
CVE-2013-1992 X.org libdmx 1.1.2 integer overflows
CVE-2013-1994 X.org libchromeXvMC & libchromeXvMCPro in openChrome
0.3.2 integer overflows
CVE-2013-1995 X.org libXi 1.7.1 sign extension issues
CVE-2013-1996 X.org libFS 1.0.4 sign extension issues
CVE-2013-1997 X.org libX11 1.5.99.901 (1.6 RC1) buffer overflows
CVE-2013-1998 X.org libXi 1.7.1 buffer overflows
CVE-2013-1999 X.org libXvMC 1.0.7 buffer overflows
CVE-2013-2000 X.org libXxf86dga 1.1.3 buffer overflows
CVE-2013-2001 X.org libXxf86vm 1.1.2 buffer overflows
CVE-2013-2002 X.org libXt 1.1.3 buffer overflows
CVE-2013-2003 X.org libXcursor 1.1.13 integer overflows
CVE-2013-2004 X.org libX11 1.5.99.901 (1.6 RC1) unbounded recursion
CVE-2013-2005 X.org libXt 1.1.3 memory corruption
CVE-2013-2066 X.org libXv 1.0.7 buffer overflows
 2013-05-23 22:42:07 +00:00
matthieu
26866f3012 Regen with util-macros 1.17. Fixes configure on landisk (and probably the 
other gcc3 architectures).
 2012-03-14 11:24:40 +00:00
matthieu
af87f98012 update to libXtst 1.2.1 2012-03-10 16:54:54 +00:00
matthieu
61c864510e Update to libXtst 1.2.0. No functional change. 2010-10-31 16:25:10 +00:00
matthieu
a345ea4b66 Update to libXtst 1.1.0. Tested on a ports bulk build by naddy@. 2010-05-10 20:10:07 +00:00
matthieu
9b4b09eb28 regen 2010-01-17 20:49:46 +00:00
matthieu
2dda0f8061 Use the new XORG_WITH_XMLTO macro in configure scripts and explicitely 
disable it during Xenocara builds. Problem reported by kili@ who also
tested this patch with an earlier version of the macro.
 2010-01-17 20:48:49 +00:00
matthieu
7830df18ed Regen with autoconf 2.59-p2, with AM_SANITY check zapped. 2008-03-15 18:08:24 +00:00
matthieu
385ccfe82e merge libXtst 1.0.3 2007-09-18 21:28:04 +00:00
matthieu
22d7fc382f libXtst 1.0.3 2007-09-18 21:23:49 +00:00
matthieu
8370179c25 regen 2007-07-29 10:50:16 +00:00
matthieu
930101c636 regen with libtool 1.5.22p10 and metaauto 0.7 2007-04-14 20:44:09 +00:00
matthieu
00a847b3f8 regen with libtool 1.5.22p9 2007-03-25 13:02:54 +00:00
matthieu
6637a9a36e regen with automake 1.9.6p2 2007-03-18 22:29:12 +00:00
matthieu
5954aa6578 regen 2007-03-15 23:28:08 +00:00
matthieu
854f5def06 Bump major of shared libs that depend on libX11 (which already got bumped). 
ok todd@
 2007-03-15 23:00:47 +00:00
matthieu
882dc8459e regenerate with OpenBSD autotools 2006-11-27 12:40:38 +00:00
matthieu
e5ca1d526f regen with OpenBSD autotools 2006-11-26 13:42:42 +00:00
matthieu
ab5c078d6e Build infrastructure for lib 2006-11-26 12:07:34 +00:00
matthieu
332dee593b import from X.Org 7.0 2006-11-25 18:03:47 +00:00