ubuntu/+source/xorg-server:applied/debian/jessie

Last commit made on 2017-12-09
Get this branch:
git clone -b applied/debian/jessie https://git.launchpad.net/ubuntu/+source/xorg-server
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/jessie
Repository:
lp:ubuntu/+source/xorg-server

Recent commits

ad51c78... by Julien Cristau on 2017-10-14

Import patches-applied version 2:1.16.4-1+deb8u2 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 85ffe8bf2d94f434a1c1d2cd1e248bc8588c7c41
Unapplied parent: 1dc6d5a0bf7f1c1f5005b971a1a682162f914249

New changelog entries:
  * render: Fix out of boundary heap access
  * Xext/shm: Validate shmseg resource id (CVE-2017-13721)
  * xkb: Escape non-printable characters correctly.
  * xkb: Handle xkb formated string output safely (CVE-2017-13723)
  * os: Make sure big requests have sufficient length.
  * Unvalidated lengths in
    - XFree86-VidModeExtension (CVE-2017-12180)
    - XFree86-DGA (CVE-2017-12181)
    - XFree86-DRI (CVE-2017-12182)
    - XFIXES (CVE-2017-12183)
    - XINERAMA (CVE-2017-12184)
    - MIT-SCREEN-SAVER (CVE-2017-12185)
    - X-Resource (CVE-2017-12186)
    - RENDER (CVE-2017-12187)
  * Xi: Test exact size of XIBarrierReleasePointer
  * Xi: integer overflow and unvalidated length in
    (S)ProcXIBarrierReleasePointer (CVE-2017-12179)
  * Xi: Silence some tautological warnings
  * Xi: fix wrong extra length check in ProcXIChangeHierarchy (CVE-2017-12178)
  * dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo (CVE-2017-12177)
  * Unvalidated extra length in ProcEstablishConnection (CVE-2017-12176)
  * Use timingsafe_memcmp() to compare MIT-MAGIC-COOKIES (CVE-2017-2624)
  * Xwayland: enable access control and default to just the local user (CVE-2015-3164)

1dc6d5a... by Julien Cristau on 2017-10-14

Import patches-unapplied version 2:1.16.4-1+deb8u2 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 2b574f98b9f0cb11afc3fbad87856559041bebb8

New changelog entries:
  * render: Fix out of boundary heap access
  * Xext/shm: Validate shmseg resource id (CVE-2017-13721)
  * xkb: Escape non-printable characters correctly.
  * xkb: Handle xkb formated string output safely (CVE-2017-13723)
  * os: Make sure big requests have sufficient length.
  * Unvalidated lengths in
    - XFree86-VidModeExtension (CVE-2017-12180)
    - XFree86-DGA (CVE-2017-12181)
    - XFree86-DRI (CVE-2017-12182)
    - XFIXES (CVE-2017-12183)
    - XINERAMA (CVE-2017-12184)
    - MIT-SCREEN-SAVER (CVE-2017-12185)
    - X-Resource (CVE-2017-12186)
    - RENDER (CVE-2017-12187)
  * Xi: Test exact size of XIBarrierReleasePointer
  * Xi: integer overflow and unvalidated length in
    (S)ProcXIBarrierReleasePointer (CVE-2017-12179)
  * Xi: Silence some tautological warnings
  * Xi: fix wrong extra length check in ProcXIChangeHierarchy (CVE-2017-12178)
  * dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo (CVE-2017-12177)
  * Unvalidated extra length in ProcEstablishConnection (CVE-2017-12176)
  * Use timingsafe_memcmp() to compare MIT-MAGIC-COOKIES (CVE-2017-2624)
  * Xwayland: enable access control and default to just the local user (CVE-2015-3164)

85ffe8b... by Moritz Mühlenhoff <email address hidden> on 2017-07-06

Import patches-applied version 2:1.16.4-1+deb8u1 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 0709efb03a7016e2c2486f6c85a79e3d2b6159a2
Unapplied parent: 2b574f98b9f0cb11afc3fbad87856559041bebb8

New changelog entries:
  * CVE-2017-10971 CVE-2017-10972

2b574f9... by Moritz Mühlenhoff <email address hidden> on 2017-07-06

Import patches-unapplied version 2:1.16.4-1+deb8u1 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 129a3d39f6d1eed325a125f9ff49a1a9b90c8c01

New changelog entries:
  * CVE-2017-10971 CVE-2017-10972

0709efb... by Julien Cristau on 2015-02-11

Import patches-applied version 2:1.16.4-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 476f58fbc2143894c4bd14da1c387e0f6508f30a
Unapplied parent: 129a3d39f6d1eed325a125f9ff49a1a9b90c8c01

New changelog entries:
  * New upstream release
    + dix: Allow zero-height PutImage requests (closes: #774308)
    + os: Fix timer race conditions
    + randr: attempt to fix primary on slave output
    + config/udev: Respect seat assignments when assigned devices
    + dix: make RegionInit legal C++
    + dri2: SourceOffloads may be for DRI3 only
    + xkb: Don't swap XkbSetGeometry data in the input buffer
    + xkb: Check strings length against request size (CVE-2015-0255)

129a3d3... by Julien Cristau on 2015-02-11

Import patches-unapplied version 2:1.16.4-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 254203f2ce0e4b295e424435c5aa621def37ac34

New changelog entries:
  * New upstream release
    + dix: Allow zero-height PutImage requests (closes: #774308)
    + os: Fix timer race conditions
    + randr: attempt to fix primary on slave output
    + config/udev: Respect seat assignments when assigned devices
    + dix: make RegionInit legal C++
    + dri2: SourceOffloads may be for DRI3 only
    + xkb: Don't swap XkbSetGeometry data in the input buffer
    + xkb: Check strings length against request size (CVE-2015-0255)

476f58f... by Julien Cristau on 2014-12-09

Import patches-applied version 2:1.16.2.901-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: d0862299234777d97ef5a9ff8d47e3798cb34899
Unapplied parent: 254203f2ce0e4b295e424435c5aa621def37ac34

New changelog entries:
  * New upstream release
    + fb: Fix Bresenham algorithms for commonly used small segments
    + denial of service due to unchecked malloc in client authentication
      [CVE-2014-8091]
    + integer overflows calculating memory needs for requests [CVE-2014-8092,
      CVE-2014-8093, CVE-2014-8094]
    + out of bounds access due to not validating length or offset values in
      requests [CVE-2014-8095, CVE-2014-8096, CVE-2014-8097, CVE-2014-8098,
      CVE-2014-8099, CVE-2014-8100, CVE-2014-8101, CVE-2014-8102,
      CVE-2014-8103]
    See http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/
  * Drop 06_Revert-fb-reorder-Bresenham-error-correction-to-avoi.diff,
    obsoleted by the upstream fix (closes: #752156)
  * 09_Xserver-man-iglx.diff: adjust Xserver man page, we disable indirect glx
    contexts by default.

254203f... by Julien Cristau on 2014-12-09

Import patches-unapplied version 2:1.16.2.901-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 93f8b62801413c31e61581cb5940467cbdbe1b33

New changelog entries:
  * New upstream release
    + fb: Fix Bresenham algorithms for commonly used small segments
    + denial of service due to unchecked malloc in client authentication
      [CVE-2014-8091]
    + integer overflows calculating memory needs for requests [CVE-2014-8092,
      CVE-2014-8093, CVE-2014-8094]
    + out of bounds access due to not validating length or offset values in
      requests [CVE-2014-8095, CVE-2014-8096, CVE-2014-8097, CVE-2014-8098,
      CVE-2014-8099, CVE-2014-8100, CVE-2014-8101, CVE-2014-8102,
      CVE-2014-8103]
    See http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/
  * Drop 06_Revert-fb-reorder-Bresenham-error-correction-to-avoi.diff,
    obsoleted by the upstream fix (closes: #752156)
  * 09_Xserver-man-iglx.diff: adjust Xserver man page, we disable indirect glx
    contexts by default.

d086229... by Julien Cristau on 2014-11-03

Import patches-applied version 2:1.16.1.901-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 813cac46d245e3a141be5d870358df731b296355
Unapplied parent: 93f8b62801413c31e61581cb5940467cbdbe1b33

New changelog entries:
  * New upstream release.
    + Xext/shm: Detach SHM segment after Pixmap is released
    + Fix present_notify to return right away when querying current or past msc
    + Fix present_pixmap when using present_notify_msc
    + xkb: ignore floating slave devices when updating from master
    + fb: Fix invalid bpp for 24bit depth window

93f8b62... by Julien Cristau on 2014-11-03

Import patches-unapplied version 2:1.16.1.901-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ec9c0409496fe43acca3313dfb5c8fc56964dce4

New changelog entries:
  * New upstream release.
    + Xext/shm: Detach SHM segment after Pixmap is released
    + Fix present_notify to return right away when querying current or past msc
    + Fix present_pixmap when using present_notify_msc
    + xkb: ignore floating slave devices when updating from master
    + fb: Fix invalid bpp for 24bit depth window