ubuntu/+source/freerdp:ubuntu/cosmic-security

Last commit made on 2019-05-28
Get this branch:
git clone -b ubuntu/cosmic-security https://git.launchpad.net/ubuntu/+source/freerdp
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/cosmic-security
Repository:
lp:ubuntu/+source/freerdp

Recent commits

0821f34... by Eduardo Barretto on 2019-05-27

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-15ubuntu1.18.10.1 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: da8e356029c4b80fdc74efa3a3a5a0970e93eb4a

New changelog entries:
  * SECURITY UPDATE: Integer truncation in update_read_bitmap_update
    - debian/patches/CVE-2018-8786.patch: Promote count to 32-bit integer
      type to avoid integer truncation in libfreerdp/core/update.c. Based on
      upstream patch.
    - CVE-2018-8786
  * SECURITY UPDATE: Integer overflow in gdi_Bitmap_Decompress
    - debian/patches/CVE-2018-8787.patch: Check for and avoid possible
      integer overflow in libfreerdp/gdi/graphics.c. Based on upstream
      patch.
    - CVE-2018-8787
  * SECURITY UPDATE: Buffer overflow in nsc_rle_decode
    - debian/patches/CVE-2018-8788.patch: Check for lengths and avoid
      possible buffer overflow in libfreerdp/codec/nsc.c and
      libfreerdp/codec/nsc_encode.c. Based on upstream patch.
    - CVE-2018-8788
  * SECURITY UPDATE: Out-of-bounds read in ntlm_read_message_fields_buffer
    - debian/patches/CVE-2018-8789.patch: Ensure to use 64-bit integer
      type when checking offset against stream length in
      winpr/libwinpr/sspi/NTLM/ntlm_message.c. Based on upstream patch.
    - CVE-2018-8789

da8e356... by Marc Deslauriers on 2017-08-23

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-15ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 9763ed34e2e0a177ccbc6846c4836496f34b4c26

New changelog entries:
  * Merge with Debian. Remaining change:
    - Disable ffmpeg support (it's in universe)
    - debian/patches/CVE-2014-0791.patch: check length in
      libfreerdp/core/license.c. (CVE-2014-0791)

9763ed3... by Mike Gabriel on 2017-08-12

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-15 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f29424157171f37787916b1145b0c89b5a3927b9

New changelog entries:
  [ Bernhard Miklautz ]
  * debian/patches:
    + Add 0009-enable-TLS-12.patch. Enable TLS 1+ support. (Closes: #871478).

f294241... by Mike Gabriel on 2017-07-27

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-14 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 471d6c93b8d604c580537c0a31a71bba620b8eca

New changelog entries:
  [ Bernhard Miklautz ]
  * debian/patches:
   + Add fix for CVE-2017-2834, CVE-2017-2835, CVE-2017-2836,
     CVE-2017-2837, CVE-2017-2838, CVE-2017-2839. (Closes: #869880).
  [ Mike Gabriel ]
  * debian/{control,rules}:
    + Drop manually maintained dbg:packages. Create dbgsym:packages
      automatically.
  * debian/control:
     + Bump Standards-Version: to 4.0.0. No changes needed.

471d6c9... by Mike Gabriel on 2017-01-26

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-13 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d5ab38e260b9434c5bf94e1ca9a319c990bfb3f7

New changelog entries:
  [ James Clarke ]
  * debian/patches:
    + Add 1013_aligned_meminfo_alignment.patch. Fix FTBFS in testsuite on
      SPARC64 architecture. (Closes: #764432).

d5ab38e... by Mike Gabriel on 2017-01-23

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-12 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7432667a2e6c00fa1974313174fdde7ebbc456a6

New changelog entries:
  * debian/control:
    + Drop Otavio Salvador from Uploaders: field. Thanks for your previous
      contributions. (Closes: #847251).

7432667... by Mike Gabriel on 2016-11-30

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-11 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b3137468f25d39e666282d10fd5999fd9d0ce22a

New changelog entries:
  * debian/control:
    + New maintenance umbrella: Debian Remote Maintainers team.
    + Temporary fix for FTBFS against libssl1.1-dev: use libssl1.0-dev for
      now. (Closes: #828142). But will be reopened with less severity
      one the package has landed and the bug got auto-closed.
    + Bump Standards-Version: to 3.9.8. No changes needed.

b313746... by Mike Gabriel on 2016-04-28

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-10 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c6beb7d3d5e33981153095c30f0d3257c8e50fca

New changelog entries:
  * debian/rules:
    + Fix more DEB_HOST_* vs. DEB_BUILD_* issues. (Closes: #822842).

c6beb7d... by Mike Gabriel on 2016-04-28

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-9 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a9285fad118d3e65e7bc29436045fbb3b2157c93

New changelog entries:
  * debian/rules:
    + Regression fix for usage of DEB_HOST_ARCH vs. DEB_BUILD_ARCH. Switching
      back to DEB_HOST_ARCH to not break cross-builds. Thanks to Guillem Jover
      for teaching me about the difference between those two options.
      (Closes: #822842).

a9285fa... by Mike Gabriel on 2016-04-27

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-8 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 1888b2c6a31f7155ef1800093b860a8d886f433a

New changelog entries:
  * debian/rules:
    + Use DEB_BUILD_ARCH, rather than DEB_HOST_ARCH when detecting armhf build
      system.
  * debian/{control,rules}:
    + Build with -DCHANNEL_URBDRC_CLIENT=on only on Linux OSes. (Closes:
      #815614).
  * debian/control:
    + Bump Standards: to 3.9.7. No changes needed.
    + Add recent MS Windows releases to LONG_DESCRIPTION (of bin:pkg
      freerdp-x11).