Last commit made on 2018-12-12
Get this branch:
git clone -b ubuntu/xenial-security https://git.launchpad.net/ubuntu/+source/freerdp
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information


Recent commits

597c302... by Alex Murray on 2018-12-11

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.3 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 50e49511edb5e72021776cc484ccad9f1f830b23

New changelog entries:
  * SECURITY UPDATE: Integer truncation in update_read_bitmap_update
    - debian/patches/CVE-2018-8786.patch: Promote count to 32-bit integer
      type to avoid integer truncation in libfreerdp/core/update.c. Based on
      upstream patch.
    - CVE-2018-8786
  * SECURITY UPDATE: Integer overflow in gdi_Bitmap_Decompress
    - debian/patches/CVE-2018-8787.patch: Check for and avoid possible
      integer overflow in libfreerdp/gdi/graphics.c. Based on upstream
    - CVE-2018-8787
  * SECURITY UPDATE: Buffer overflow in nsc_rle_decode
    - debian/patches/CVE-2018-8788.patch: Check for lengths and avoid
      possible buffer overflow in libfreerdp/codec/nsc.c and
      libfreerdp/codec/nsc_encode.c. Based on upstream patch.
    - CVE-2018-8788
  * SECURITY UPDATE: Out-of-bounds read in ntlm_read_message_fields_buffer
    - debian/patches/CVE-2018-8789.patch: Ensure to use 64-bit integer
      type when checking offset against stream length in
      winpr/libwinpr/sspi/NTLM/ntlm_message.c. Based on upstream patch.
    - CVE-2018-8789

50e4951... by Marc Deslauriers on 2017-08-03

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 8593f438249bf5c956271c7ef1467538b8c98629

New changelog entries:
  * SECURITY UPDATE: integer overflow in license_read_scope_list
    - debian/patches/CVE-2014-0791.patch: check length in
    - CVE-2014-0791
  * SECURITY UPDATE: multiple code execution and DoS issues
    - debian/patches/CVE-2017-283x.patch: fix issues in
      libfreerdp/core/capabilities.c, libfreerdp/core/certificate.*,
      libfreerdp/core/connection.c, libfreerdp/core/gcc.c,
      libfreerdp/core/info.c, libfreerdp/core/license.c,
      libfreerdp/core/mcs.c, libfreerdp/core/nego.c,
      libfreerdp/core/peer.c, libfreerdp/core/rdp.*,
      libfreerdp/core/security.*, libfreerdp/core/surface.c,
      libfreerdp/core/tpkt.*, libfreerdp/core/transport.c.
    - CVE-2017-2834, CVE-2017-2835, CVE-2017-2836, CVE-2017-2837,
      CVE-2017-2838, CVE-2017-2839
  * debian/patches/alignment_test_failure.patch: fix FTBFS on armhf because
    of failing alignment test.

8593f43... by Robert Ancell on 2015-10-05

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 2283add1688281b64bdd06392ee0c8cbe8174d16

New changelog entries:
  * Merge with Debian unstable, remaining changes
    - Disable ffmpeg support
    - Disable gstreamer support, this relies on gstreamer 0.10 and we don't
      want to add any more deps on that.

2283add... by Mike Gabriel on 2015-08-19

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 28a7be8c83404cd04b595fdf16df131ad5f180ac

New changelog entries:
  * debian/patches:
    + Improve 1003_multi-arch-include-path.patch. Also make include dir in
      freerdp.pc (pkgconfig) multi-arch compliant. (Closes: #790636).
    + Add 0004_build-cmake-3.1-compatibility.patch. Fix FTBFS with cmake 3.1.
      (Closes: #788557). Thanks to Andreas Cadhalpun for helping out on this.
  * debian/control:
    + Bump Standards: to 3.9.6. No changes needed.

28a7be8... by Mike Gabriel on 2015-03-10

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a8959cf47b37bb6f2eb8f8512c3b86491ef84e0f

New changelog entries:
  * debian/patches:
    + Add 0002_handle-old-style-cmdline-options.patch. Command line detection
      is run with dummy settings where not everything is allocated. Collections
      (device, dynamic channel and static channel) didn't handle this case
      properly. (Closes: #779312).
    + Add 0003_copy-data-when-adding-glyph-to-cache.patch. Copy data when adding
      glyph to cache. Fix double free or corruption inupdate_gdi_fast_glyph ->
      glyph_cache_put -> _int_free (Closes: #740637).

a8959cf... by Mike Gabriel on 2015-02-13

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0bea0ee0e3d9728913bb2970b0a729ec577e2af6

New changelog entries:
  [ Bernhard Miklautz ]
  * debian/patches:
    + Add patch 0001_fix-cmdline-parser.patch (picked from upstream).
      Fix and improve command line parser. (Closes: #759361).
  [ Mike Gabriel ]
  * debian/copyright:
    + Mention new file client/common/test/TestClientCmdLine.c.

0bea0ee... by Mike Gabriel on 2014-10-07

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 425287a99245fa659e98febcaaa3c3489ed81fe8

New changelog entries:
  * debian/control:
    + Add B-D: libxrandr-dev.
  * debian/patches:
    + Add 1007_detect-arm-arch-correctly.patch. Detect arm architecture
      correctly. (Closes: #758565).
    + Add 1008_gcc-fPIC-on-arm64.patch. Enable -fPIC linker option for arm64
      and armhf builds.

425287a... by Aurelien Jarno on 2014-09-28

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-1.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2b78459e511ca7fbedbfa25497d5ef6e04490eda

New changelog entries:
  [ Aurelien Jarno ]
  * Non-maintainer upload.
  * Fix testsuite issues (closes: #762591):
    - Add 1004_64-bit-architectures.patch to correctly support non-amd64
      64-bit architectures.
    - Add 1005_parse-buffer-endianess.patch to correctly parse RDP buffer
      on bug endian architectures.
    - Add 1006_test-unicode-endianess.patch to convert the expected
      results from native endian to little endian.

2b78459... by Mike Gabriel on 2014-09-22

Import patches-unapplied version 1.1.0~git20140921.1.440916e+dfsg1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d8e0a00a65d9fc1a01f0a704e0bc1cb926142c66

New changelog entries:
  [ Mike Gabriel ]
  * New Git snapshot upload to unstable:
    - Obtained from stable-1.1 branch of http://github.com/FreeRDP/FreeRDP.
      Using commit hash: 440916eae2e07463912d5fe507677e67096eb083.
  * debian/control:
    + Add B-D: cdbs.
    + Add B-D: libgstreamer-plugins-base0.10-dev.
    + Split out libwinpr-dev from libfreerdp-dev and libwinpr-dbg from
      libwinpr-dbg from libfreerdp-dbg.
    + Use more meaningful SYNOPSIS for libwinpr* packages.
    + The lib*-dev packages are now Multi-Arch:same packages.
  * debian/rules:
    + Switch over to CDBS based packaging.
    + Don't ship static library files.
    + Enable unit tests.
    + Split out libwinpr-dbg from libfreerdp-dbg.
    + Enable multi-arch path for include directory.
    + Add -DWITH_GSTREAMER as cmake flag.
    + Set cmake's RPATH build settings correctly.
    + Drop upstream script, that would force us to list MPL-2.0 in
  * debian/lib*-dev.install:
    + Reflect libwinpr-dev split-out in installation of development files.
  * debian/patches:
    + Drop <email address hidden>. It is contained
      in the latest upstream Git snapshot.
    + Drop 1003_fix-header-inclusion.patch. More elegantly solved by upstream
      in latest upstream Git snapshot.
    + Add 1003_multi-arch-include-path.patch. Allow multi-arch compliant paths
      in lib*-dev packages.
  * debian/copyright:
    + Add so far non-mentioned upstream source/cmake/helper files.
    + Don't use blanks in short license names.
    + Move UNICODE license text to end of file.
    + Add license for debian/*.
  * lintian:
    + Tolerate too-long file name in libfreerdp-plugins-standard. Nothing we
      can do about it at the moment.
  [ Sebastian Ramacher ]
  * Split shared libraries into separate packages to avoid breakage if the
    SONAME changes are not done at the same time for every library. (Closes:
  * Ignore plugins when running dh_makeshlibs to fix lintian warnings and
    errors in libfreerdp-plugins-standard.

d8e0a00... by Mike Gabriel on 2014-08-23

Import patches-unapplied version 1.1.0~git20140809.1.b07a5c1+dfsg-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cf5bc28bf1ccff38b0ce917562d62fd53a1f19fc

New changelog entries:
  * debian/patches:
    + Add 1003_fix-header-inclusion.patch. Make sure that winpr headers are
      complete (esp. cmake-generated config.h). (Closes: #759881).
    + Refresh 2001_detect-ffmpeg-on-Debian.patch.
    + Add <email address hidden>. Do not break
      up the name for '@'; both credSSP and the ClientInfo PDU expect
      '<email address hidden>' to be transmitted as username '<email address hidden>', domain
  * debian/watch:
    + Fix syntax error.