nx-libs, branch pr/render-cve-fixes NXv3 (redistributed) https://cgit.arctica-project.org/nx-libs/atom?h=pr%2Frender-cve-fixes 2015-05-24T23:03:10+00:00 render: unvalidated lengths in Render extn. swapped procs [CVE-2014-8100 2/2] 2015-05-24T23:03:10+00:00 Alan Coopersmith alan.coopersmith@oracle.com 2014-01-27T03:51:29+00:00 urn:sha1:a0c90ad34fa89e5358893701723bd2f96a4bd3b2 v2: backport to nx-libs 3.6.x (Mike DePaulo) v3: port to NXrender.c rather than render.c (Mike DePaulo) Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com> Reviewed-by: Peter Hutterer <peter.hutterer@who-t.net> Conflicts: render/render.c render: check request size before reading it [CVE-2014-8100 1/2] 2015-05-24T23:02:56+00:00 Julien Cristau jcristau@debian.org 2014-10-28T09:30:04+00:00 urn:sha1:e469cff02d3093062ce9243185d55c516efdad0b Otherwise we may be reading outside of the client request. v2: backport to nx-libs 3.6.x (Mike DePaulo) v3: port to NXrender.c rather than render.c (Mike DePaulo) Signed-off-by: Julien Cristau <jcristau@debian.org> Reviewed-by: Alan Coopersmith <alan.coopersmith@oracle.com> Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com> Conflicts: render/render.c Merge branch 'sunweaver-pr/libxdamage-cleanup' into arctica-3.6.x 2015-05-12T04:07:45+00:00 Mihai Moldovan ionic@ionic.de 2015-05-12T04:07:45+00:00 urn:sha1:f7295831a0dd1b52fb68e41dd9e84e0850524835 Attributes GH PR #18: https://github.com/ArcticaProject/nx-libs/pull/18 debian/changelog: merge with master branch. 2015-05-12T04:06:31+00:00 Mihai Moldovan ionic@ionic.de 2015-05-04T23:23:04+00:00 urn:sha1:027f593fc78ea5bb53b1d6372aa7bf37e49e59f7 debian/changelog: add entry for last change. 2015-05-12T04:06:31+00:00 Mihai Moldovan ionic@ionic.de 2015-05-04T23:22:41+00:00 urn:sha1:998527ce5783a0eae405dabb087a20add9a0ef9f debian/libnx-xinerama1.*: fix faulty logic when creating symlinks. 2015-05-12T04:06:30+00:00 Mihai Moldovan ionic@ionic.de 2015-05-04T23:22:18+00:00 urn:sha1:b77b26f4acc3932c29a1e0788e22d24e29e091d5 debian/changelog: merge with master branch. 2015-05-04T23:23:04+00:00 Mihai Moldovan ionic@ionic.de 2015-05-04T23:23:04+00:00 urn:sha1:b573cbba9416c8f87d7d399e383157ebd0446c8f debian/changelog: add entry for last change. 2015-05-04T23:22:41+00:00 Mihai Moldovan ionic@ionic.de 2015-05-04T23:22:41+00:00 urn:sha1:fca264fd01bb7ae881445691e561fe235dfd9901 debian/libnx-xinerama1.*: fix faulty logic when creating symlinks. 2015-05-04T23:22:18+00:00 Mihai Moldovan ionic@ionic.de 2015-05-04T23:22:18+00:00 urn:sha1:06f36d0f0bcf3c5d1f5cb59afdd49599fa8c1d0b Merge pull request #20 from sunweaver/pr/fix-CVE-2015-3418 2015-05-01T20:16:30+00:00 Mike DePaulo mikedep333@users.noreply.github.com 2015-05-01T20:16:30+00:00 urn:sha1:c9d81fc38915faaffdbcfe4b4f69d5e2fcbfcedf dix: Allow zero-height PutImage requests (fix for X.Org's CVE-2015-3418).