| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
This release fixes 6 recently reported security vulnerabilities in
various extensions. The CVE numbers are:
CVE-2022-46340, CVE-2022-46341, CVE-2022-46342, CVE-2022-46343,
CVE-2022-46344, and CVE-2022-4283
For details on the these issues please see the security advisory here:
https://lists.x.org/archives/xorg-announce/2022-December/003302.html
Jeremy Huddleston Sequoia (3):
xquartz: Remove unused macro (X11LIBDIR)
xquartz: Move default applications list outside of the main executable
meson: Don't build COMPOSITE for XQuartz
Peter Hutterer (8):
Xtest: disallow GenericEvents in XTestSwapFakeInput
Xi: disallow passive grabs with a detail > 255
Xext: free the XvRTVideoNotify when turning off from the same client
Xext: free the screen saver resource when replacing it
Xi: return an error from XI property changes if verification failed
Xi: avoid integer truncation in length check of ProcXIChangeProperty
xkb: reset the radio_groups pointer to NULL after freeing it
xserver 21.1.5
|
|
|
|
|
|
|
|
modular-xorg-xwayland: mark as BROKEN for now, it has a separate distfile
in the 21.x series.
This release fixes 2 recently reported security vulnerabilities in xkb, several
regressions since 1.20.x and a number of miscellaneous bugs.
Błażej Szczygieł (1):
present: Check for NULL to prevent crash
Jeremy Huddleston Sequoia (23):
rootless: Dead code removal (ROOTLESS_REDISPLAY_DELAY is already defined)
X11Application: Ensure TIS operations are done on the main thread
os/connection: Improve abstraction for launchd secure sockets
xquartz: Create a separate category for organizing user preferences
xquartz pbproxy: Adopt NSUserDefaults+XQuartzDefaults for preferences
xquartz: Fold spaces related preferences into NSUserDefaults+XQuartzDefaults
XQuartz: Ensure scroll events are delivered to a single window (not both X11 and AppKit)
meson: Bump requirement to meson-0.50.0
xquartz: Update Sparkle configuration to use SUPublicEDKey
xquartz: Update copyright for 2022
meson: Provide options to set CFBundleVersion and CFBundleVersionString in XQuartz
Revert "meson: Bump requirement to meson-0.50.0"
xquartz: Update autotools-based builds of XQuartz to account for recent changes
print_edid: Fix a format string error
xf86-input-inputtest: Fix build on systems without SOCK_NONBLOCK
tests: Fix build failure from missing micmap.c
meson: Support building Xnest and Xorg on darwin
XQuartz: Build the bundle trampoline when using meson
XQuartz: Add TCC reason keys to Info.plist
xquartz: Use correct defines when building to support Sparkle updates
xquartz: Fix a possible crash when editing the Application menu due to mutaing immutable arrays
XQuartz: Improve type safety for X11Controller's application menu editor
xquartz: Add missing files to distribution tarball
Olivier Fourdan (1):
render: Fix build with gcc 12
Peter Hutterer (3):
xkb: switch to array index loops to moving pointers
xkb: swap XkbSetDeviceInfo and XkbSetDeviceInfoCheck
xkb: add request length validation for XkbSetGeometry
Povilas Kanapickas (5):
Revert "os: Try to discover the current seat with the XDG_SEAT var first"
dix: Correctly save replayed event into GrabInfoRec
dix: Don't send touch end to clients that do async grab without touches
xfree86: Fix event data alignment in inputtest driver
xserver 21.1.4
Samuel Thibault (1):
xkb: fix XkbSetMap when changing a keysym without changing a keytype
|
|
From Claes Nästén.
|
|
|
|
|
|
|
|
|
|
Mario Kleiner (2):
Fix RandR leasing for more than 1 simultaneously active lease.
modesetting: Allow Present flips with mismatched stride on atomic drivers.
Matt Turner (1):
xserver 1.20.14
Povilas Kanapickas (4):
record: Fix out of bounds access in SwapCreateRegister()
xfixes: Fix out of bounds access in *ProcXFixesCreatePointerBarrier()
Xext: Fix out of bounds access in SProcScreenSaverSuspend()
render: Fix out of bounds access in SProcRenderCompositeGlyphs()
|
|
|
|
|
|
|
|
|
|
All checksums have been double-checked against existing RMD160 and
SHA512 hashes
Unfetchable distfiles (fetched conditionally?):
./x11/py-qt4/distinfo PyQt4_gpl_mac-4.12.3.tar.gz
|
|
|
|
|
|
Matt Turner (1):
xserver 1.20.13
Łukasz Spintzyk (2):
present: fallback get_crtc to return crtc belonging to screen with present extension
modesetting: unflip not possible when glamor is not set
|
|
The fix needs to go in compiler.h instead, like in xsrc.
|
|
|
|
Erik Kurzinger (1):
glx: don't create implicit GLXWindow if one already exists
Jeremy Huddleston Sequoia (2):
xquartz: Fix appFlags build failure with macOS 10.15+ SDKs
xquartz: Ensure the mouse pointer is shown when switching to a native macOS alert or window
Jose Maria Casanova Crespo (1):
glamor: Avoid using GL_QUADS on V3D
Matt Turner (2):
Build xz tarballs instead of bzip2
xserver 1.20.12
Olivier Fourdan (4):
xwayland: Add PtrFeedback to the touch device
dix: Guard against non-existing PtrFeedbackPtr
glx: Set ContextTag for all contexts
glx: Fix use after free in MakeCurrent
Vasily Khoruzhick (1):
glx: fixup symbol name for get_extensions function
Ville Syrjälä (2):
modesetting: Update props for dynamically added outputs
modesetting: Fix possible_crtcs
Zoltán Böszörményi (1):
xfree86: Fix NULL pointer dereference crash
orbea (1):
hw/dmx/config: Link directly with libdmxconfig.a
Łukasz Spintzyk (9):
modesetting: Disable reverse prime offload mode for displays running on evdi,udl
modesetting: Initialize present extension despite glamor is disabled
present: Use crtc's screen present operation for syncing
present: fix msc offset calculation in screen mode
modesetting: Find crtc on slave outputs as fallback instead of returning primary crtc
modesetting: remove unnecessary ms_covering_xf86_crtc dup of ms_covering_randr_crtc
modesetting: Remove few common functions from ms namespace
xfree86: Change displays array to pointers array to fix invalid pointer issues after table reallocation
xfree86: Fix out of array bound access to xf86Entities
|
|
|
|
ok khorben
|
|
XXX I don't see how the pkg/56169 fix can work on SunOS, which doesn't have
strlcpy either. Maybe it fixes modular-xorg-xephyr but breaks
modular-xorg-server?
|
|
|
|
From pkg/56169; thanks for reporting!
|
|
most of these simply extend matching from "aarch64" to "aarch64eb"
in various forms of code. most remaining uses in pkgsrc of
"MACHINE_ARCH == aarch64" are because of missing aarch64eb support,
such as most of the binary-bootstrap requiring languages like rust,
go, and java.
no pkg-bump because this shouldn't change packages on systems that
could already build all of these.
|
|
Christopher Chavez (1):
XQuartz: recognize F16-F20 and Menu keys
Fabrice Fontaine (1):
meson.build: KMS support also depends on dri2
Jeremy Huddleston Sequoia (36):
xquartz: Remove support for Panther and earlier versions of macOS
os: Remove support for Tiger and earlier versions of macOS
xquartz: Remove support for Tiger and earlier versions of macOS
xquartz: Remove support for Leopard and earlier versions of macOS
xquartz: Remove check for libdispatch now that we don't support pre-SnowLeopard
xquartz: Remove support for SnowLeopard and earlier versions of macOS
xquartz: Remove support for Lion and earlier versions of macOS
xquartz: Remove support for Mountain Lion and earlier versions of macOS
xquartz: Remove support for building for i386
xquartz: Remove unused include of AvailabilityMacros.h from various sources
xquartz: Remove support for older versions of libXplugin
xquartz: Ensure that NSRunAlertPanel() is run on the main thread
xquartz: Ensure we call into TIS on the main thread
xquartz: Update the about box copyright to 2021
xquartz: Apply Xcode 12.4 automatic updates to nibs
xquartz: Fix applications menu table background color for dark mode
xquartz: Apply spell check fixes from master for easier cherry-picking of changes in xquartz
xquartz: Remove a workaround for AppKit versions older than Lion
xquartz: Remove some dead code for compatibility with older nibs
xquartz: Minor code modernization -- @autoreleasepool adoption
xquartz: Use objc_autoreleasePoolPush / objc_autoreleasePoolPop directly in QuartzBlockHandler
xqaurtz: Remove message_kit_thread() and use dispatch instead
xquartz: Fold away array_with_strings_and_numbers and simplify with more modern Objective-C
xquartz: Fold away some unnecessary hops to X11Controller through X11Application
xquartz: Fold quartzCommon.h into quartz.h
xquartz: Convert X11Application ivars into @properties
xquartz: Convert X11Controller ivars into @properties
xquartz: Rewrite Window menu handling to not depend on X11App.windowsMenu.numberOfItems being correct in -awakeFromNib
xquartz: Silence a compiler warning about missing internal methods on NSApplication
xquartz: Fix build with sparkle enabled
xquartz: Fix a compiler warning about const incompatible pointer assignment
xquartz: Allocate each fbconfig separately
xquartz: Don't process AppKit events if we haven't finished initializing
xquartz: Add a launch trampoline to better integrate with modern versions of macOS
xquartz: Don't include strndup.c any more since we no longer support 10.8 and older
xquartz: Remove a check for NSAppKitVersionNumber >= NSAppKitVersionNumber10_7
Jim DeLaHunt (1):
Fix typo "XQaurtz" in Xquartz.man
Jon Turney (1):
xquartz: Add stub ddxInputThread()
Mariusz Ceier (1):
xwayland: Replace LogMessage with LogMessageVerb
Matt Turner (1):
xserver 1.20.11
Matthieu Herrb (1):
Fix XChangeFeedbackControl() request underflow
Michal Srb (1):
xkb: Fix heap overflow caused by optimized away min.
|
|
Alex Goins (1):
glamor: Update pixmap's devKind when making it exportable
Arthur Williams (1):
include: Increase the number of max. input devices to 256.
Bernhard Übelacker (1):
os: Fix instruction pointer written in xorg_backtrace
Greg V (1):
xwayland: use drmGetNodeTypeFromFd for checking if a node is a render one
Kishore Kadiyala (1):
modesetting: keep going if a modeset fails on EnterVT
Martin Peres (1):
modesetting: check the kms state on EnterVT
Matt Turner (1):
xserver 1.20.10
Matthieu Herrb (2):
Fix XkbSetDeviceInfo() and SetDeviceIndicators() heap overflows
Check SetMap request length carefully.
Michel Dänzer (10):
glamor: Fix glamor_poly_fill_rect_gl xRectangle::width/height handling
xfree86: Take second reference for SavedCursor in xf86CursorSetCursor
present/wnmd: Can't use page flipping for windows clipped by children
xwayland: Check window pixmap in xwl_present_check_flip2
present/wnmd: Remove dead check from present_wnmd_check_flip
present: Move flip target_msc adjustment out of present_vblank_create
present: Add present_vblank::exec_msc field
present/wnmd: Move up present_wnmd_queue_vblank
present/wnmd: Execute copies at target_msc-1 already
present/wnmd: Translate update region to screen space
Olivier Fourdan (8):
Revert "linux: Fix platform device probe for DT-based PCI"
Revert "linux: Fix platform device PCI detection for complex bus topologies"
Revert "linux: Make platform device probe less fragile"
xwayland: Do not discard frame callbacks on allow commits
xwayland: Remove pending stream reference when freeing
xwayland: non-rootless requires the wl_shell protocol
xwayland: Create an xwl_window for toplevel only
configure: Build hashtable for Xres and glvnd
|
|
This patch was imported from
https://gitlab.freedesktop.org/xorg/xserver/-/issues/128.
It notably fixes embedding Xephyr into Gtk+ 3 applications, such as
simulator(1) from devel/deforaos-coder.
Tested on netbsd-9/amd64.
|
|
Aaron Ma (1):
xfree86: add drm modes on non-GTF panels
Adam Jackson (2):
linux: Make platform device probe less fragile
linux: Fix platform device PCI detection for complex bus topologies
Alan Coopersmith (2):
Update URL's in man pages
doc: Update URLs in Xserver-DTrace.xml
Alex Goins (1):
randr: Check rrPrivKey in RRHasScanoutPixmap()
Hans de Goede (1):
modesetting: Disable pageflipping when using a swcursor
Huacai Chen (1):
linux: Fix platform device probe for DT-based PCI
Jose Maria Casanova Crespo (1):
modesetting: Fix front_bo leak at drmmode_xf86crtc_resize on XRandR rotation
Lyude Paul (1):
xwayland: Store xwl_tablet_pad in its own private key
Martin Weber (1):
hw/xfree86: Avoid cursor use after free
Matt Turner (1):
xserver 1.20.9
Matthieu Herrb (5):
fix for ZDI-11426
Correct bounds checking in XkbSetNames()
Fix XIChangeHierarchy() integer underflow
Fix XkbSelectEvents() integer underflow
Fix XRecordRegisterClients() Integer underflow
Michel Dänzer (7):
present/wnmd: Keep pixmap pointer in present_wnmd_clear_window_flip
present/wnmd: Free flip_queue entries in present_wnmd_clear_window_flip
xwayland: Always use xwl_present_free_event for freeing Present events
xwayland: Free all remaining events in xwl_present_cleanup
xwayland: Hold a pixmap reference in struct xwl_present_event
xwayland: Propagate damage x1/y1 coordinates in xwl_present_flip
xwayland: Handle NULL xwl_seat in xwl_seat_can_emulate_pointer_warp
Olivier Fourdan (4):
xwayland: Fix infinite loop at startup
xwayland: Clear private on device removal
xwayland: Disable the MIT-SCREEN-SAVER extension when rootless
xwayland: Use a fixed DPI value for core protocol
Roman Gilg (1):
present: Check valid region in window mode flips
Samuel Thibault (1):
dix: do not send focus event when grab actually does not change
Simon Ser (2):
xwayland: import DMA-BUFs with GBM_BO_USE_RENDERING only
xwayland: only use linux-dmabuf if format/modifier was advertised
SimonP (1):
xwayland: Initialise values in xwlVidModeGetGamma()
Sjoerd Simons (1):
xwayland: Fix crashes when there is no pointer
|
|
xorg-server 1.20.9, couldn't find a tarball).
X.Org security advisory: July 31, 2020
X Server Pixel Data Uninitialized Memory Information Disclosure
===============================================================
CVE-2020-14347
Allocation for pixmap data in AllocatePixmap() does not initialize the
memory in xserver, it leads to leak uninitialize heap memory to
clients. When the X server runs with elevated privileges.
This flaw can lead to ASLR bypass, which when combined with other
flaws (known/unknown) could lead to lead to privilege elevation in the
client.
Patch
=====
A patch for this issue has been commited to the xorg server git
repository. xorg-server 1.20.9 will be released shortly and will
include this patch.
https://gitlab.freedesktop.org/xorg/xserver.git
diff --git a/dix/pixmap.c b/dix/pixmap.c
index 1186d7dbb..5a0146bbb 100644
--- a/dix/pixmap.c
+++ b/dix/pixmap.c
@@ -116,7 +116,7 @@ AllocatePixmap(ScreenPtr pScreen, int pixDataSize)
if (pScreen->totalPixmapSize > ((size_t) - 1) - pixDataSize)
return NullPixmap;
- pPixmap = malloc(pScreen->totalPixmapSize + pixDataSize);
+ pPixmap = calloc(1, pScreen->totalPixmapSize + pixDataSize);
if (!pPixmap)
return NullPixmap;
Thanks
======
This vulnerability was discovered by Jan-Niklas Sohn working with
Trend Micro Zero Day Initiative.
|
|
|
|
Adam Jackson (1):
Revert "dri2: Don't make reference to noClientException"
Arthur Williams (1):
dix: Check for NULL spriteInfo in GetPairedDevice
Daniel Llewellyn (1):
os: Ignore dying client in ResetCurrentRequest
Dave Airlie (1):
modesetting: remove unnecessary error message, fix zaphod leases
David Seifert (1):
Fix building with `-fno-common`
Dor Askayo (1):
xwayland: clear pixmaps after creation in rootless mode
Eric Anholt (1):
glamor: Fix a compiler warning since the recent OOM fixes.
George Matsumura (1):
Restrict 1x1 pixmap filling optimization to GXcopy
Jon Turney (2):
Add xf86OSInputThreadInit to stub os-support as well
Fix old-style definition warning for xf86OSInputThreadInit()
Jonas Ådahl (1):
xwayland/glamor-gbm: Handle DRM_FORMAT_MOD_INVALID gracefully
Kenneth Graunke (1):
configure: Define GLAMOR_HAS_EGL_QUERY_DRIVER when available
Maarten Lankhorst (1):
modesetting: Disable atomic support by default
Matt Turner (1):
xserver 1.20.8
Michel Dänzer (8):
modesetting: Explicitly #include "mi.h"
xfree86/modes: Bail from xf86RotateRedisplay if pScreen->root is NULL
xwayland: Split up xwl_screen_post_damage into two phases
xwayland: Call glamor_block_handler from xwl_screen_post_damage
xwayland: Add xwl_window_create_frame_callback helper
xwayland: Use single frame callback for Present flips and normal updates
xwayland: Use frame callbacks for Present vblank events
xwayland: Delete all frame_callback_list nodes in xwl_unrealize_window
Paul Kocialkowski (4):
glamor: Propagate FBO allocation failure for picture to texture upload
glamor: Error out on out-of-memory when allocating PBO for FBO access
glamor: Propagate glamor_prepare_access failures in copy helpers
glamor: Fallback to system memory for RW PBO buffer allocation
|
|
|
|
It's not possible to build without input-thread due to missing symbol
ddxInputThreadInit. input-thread seems to no longer crash the server.
|
|
|
|
pkglint --only "https instead of http" -r -F
With manual adjustments afterwards since pkglint 19.4.4 fixed a few
indentations in unrelated lines.
This mainly affects projects hosted at SourceForce, as well as
freedesktop.org, CTAN and GNU.
|
|
A variety of bugfixes, primarily in modesetting, glamor, and Solaris
support. This release also contains support for choosing the DRI driver
via EGL_MESA_query_driver. Thanks to all who contributed with testing
and fixes!
Aaron Plattner (1):
modesetting: Check whether RandR was initialized before calling rrGetScrPriv
Alan Coopersmith (5):
os-support/solaris: Drop ExtendedEnabled global variable
Add ddxInputThread call from os layer into ddx layer
Add xf86OSInputThreadInit call from common layer into os-support layer
os-support/solaris: Set IOPL for input thread too
ospoll: Fix Solaris ports implementation to build on Solaris 11.4
Kenneth Graunke (2):
glamor: Add a function to get the driver name via EGL_MESA_query_driver
modesetting: Use EGL_MESA_query_driver to select DRI driver if possible
Matt Turner (1):
xserver 1.20.7
Michel Dänzer (5):
modesetting: Call glamor_finish from drmmode_crtc_set_mode
xfree86/modes: Call xf86RotateRedisplay from xf86CrtcRotate
modesetting: Clear new screen pixmap storage on RandR resize
xwayland: Do flush GPU work in xwl_present_flush
glamor: Only use dual blending with GLSL >= 1.30
Peter Hutterer (1):
Xi: return AlreadyGrabbed for key grabs > 255
|
|
Match the modesetting driver on x86 and ARM NetBSD.
from maya
Bump PKGREVISION
|
|
1.20.6
A variety of bugfixes across the board, primarily in Xwayland and PRIME.
This release also includes GLX vendor selection support. Thanks to all
who contributed with testing and fixes!
Aaron Plattner (3):
GLX: Set GlxServerExports::{major,minor}Version
xfree86: Call ScreenInit for protocol screens before GPU screens
os: Don't crash in AttendClient if the client is gone
Adam Jackson (7):
xwayland: Expand the RANDR screen size limits
miext/sync: Fix needless ABI change
glx: Fix previous context validation in xorgGlxMakeCurrent
meson: Fix another reference to "gl" 9.2.0
meson: Apparently 1.2 is < 1.2.0
mi: Add a default no-op miSourceValidate
dix: Call SourceValidate before GetImage
Alex Goins (5):
xsync: Add resource inside of SyncCreate, export SyncCreate
randr: Fix RRCrtcDetachScanoutPixmap() segfault during server teardown
modesetting: Fix ms_covering_crtc() segfault with non-modesetting slave primary
modesetting: Fix ms_covering_crtc() segfault with non-xf86Crtc slave
modesetting: Implement ms_covering_randr_crtc() for ms_present_get_crtc()
Alexander Tsoy (1):
configure: Set libdrm flags correctly if only XORG is enabled
Alexander Volkov (1):
shm: Use memfd_create when possible
Andres Rodriguez (1):
xf86: Disable unused crtc functions when a lease is revoked
Carlos Garnacho (4):
xwayland: Reset scheduled frames after hiding tablet cursor
xwayland: Separate DamagePtr into separate window data
xwayland: Refactor surface creation into a separate function
xwayland: Handle the case of windows being realized before redirection
Eric Anholt (2):
shm: reindent shm_tmpfile to follow our standards.
shm: Pick the shm dir at run time, not build time.
Hans de Goede (1):
glamor/xwayland: Define EGL_NO_X11
Kyle Brenneman (3):
GLX: Add a per-client vendor mapping.
GLX: Use the sending client for looking up XID's
GLX: Add a function to change a clients vendor list.
Marco Trevisan (Treviño) (1):
Xi: Use current device active grab to deliver touch events if any
Marvin Schmidt (1):
build: glx: Lower gl version to work with libglvnd
Matt Roper (1):
dri2: Sync i965_pci_ids.h from mesa
Matt Turner (3):
dix: Assert noPanoramiXExtension is false in PanoramiX code
xfree86: Test presence of isastream()
xserver 1.20.6
Michel Dänzer (2):
Revert "present/scmd: Check that the flip and screen pixmap pitches match"
miext/sync: Make struct _SyncObject::initialized fully ABI compatible
Olivier Fourdan (7):
xwayland: Avoid a crash on pointer enter with a grab
xwayland: Check status in GBM pixmap creation
glamor: Make pixmap exportable from `gbm_bo_from_pixmap()`
xwayland: Update screen pixmap on output resize
xwayland: Do not free a NULL GBM bo
compiler.h: Do not include sys/io.h on ARM with glibc
present/wnmd: Relax assertion on CRTC on abort_vblank()
Samuel Thibault (2):
Fix crash on XkbSetMap
Fix crash on XkbSetMap
Sven Joachim (1):
modesetting: Fix broken manpage in autoconf build
1.20.5
Minor bugfix release to fix some input, Xwayland, glamor, and Present
issues. Thanks to all who contributed fixes and testing.
Adam Jackson (1):
xserver 1.20.5
Michel Dänzer (3):
Revert "gitlab-ci: Only run docker-image stage if relevant source files change"
xwayland/present: Destroy sync_callback in xwl_present_cleanup
present/scmd: Check that the flip and screen pixmap pitches match
Olivier Fourdan (2):
xwayland: search for a render node to use
glamor: pixmap FBO may not be allocated
Peter Hutterer (2):
xwayland: fix a realloc OOM error case
dix: leave last.valuators alone on slave switch
Ray Strode (1):
dix: ensure work queues are cleared on reset
|
|
|
|
Unused for years (was only used by removed xorgcfg).
Bump PKGREVISION.
|
|
It is not actually used. Bump PKGREVISION.
|
|
Noted by taca.
|
|
|
|
XWayland is a fully fledged X server implementation that acts as a proxy
between X11 clients and a Wayland compositor.
It runs as a specialized Wayland client, while optionally using a set of
XWayland specific Wayland protocols for implementing certain functionality.
The Wayland compositor acts both as the Wayland display server XWayland
connects to, as well as the window manager.
|
|
This no longer needs modular X to build with DRI, so make that
unconditional.
|
|
Also remove legacy drivers only building against mxs112:
* x11/xf86-video-newport
* x11/xf86-video-modesetting (integrated into later X versions)
According to tnn, these are no longer useful.
* Originally kept for drm1 users (NetBSD 6).
* The one use case that actually worked was xf86-video-ati6.
* That driver has been patched to work with the new server ABI.
|
