--- - branch: netbsd-6-1 date: Wed Oct 5 10:49:00 UTC 2016 files: - new: 1.1.1.5.32.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/X11/FontNames.c pathrev: xsrc/xfree/xc/lib/X11/FontNames.c@1.1.1.5.32.1 type: modified - new: 1.1.1.5.32.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/X11/GetImage.c pathrev: xsrc/xfree/xc/lib/X11/GetImage.c@1.1.1.5.32.1 type: modified - new: 1.1.1.5.32.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/X11/ModMap.c pathrev: xsrc/xfree/xc/lib/X11/ModMap.c@1.1.1.5.32.1 type: modified - new: 1.1.1.4.34.1 old: 1.1.1.4 path: xsrc/xfree/xc/lib/X11/ListExt.c pathrev: xsrc/xfree/xc/lib/X11/ListExt.c@1.1.1.4.34.1 type: modified - new: 1.1.1.7.20.2 old: 1.1.1.7.20.1 path: xsrc/xfree/xc/lib/X11/Xlibint.h pathrev: xsrc/xfree/xc/lib/X11/Xlibint.h@1.1.1.7.20.2 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XGMotion.c pathrev: xsrc/xfree/xc/lib/Xi/XGMotion.c@1.1.1.5.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XGetBMap.c pathrev: xsrc/xfree/xc/lib/Xi/XGetBMap.c@1.1.1.5.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XGetDCtl.c pathrev: xsrc/xfree/xc/lib/Xi/XGetDCtl.c@1.1.1.5.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XGetFCtl.c pathrev: xsrc/xfree/xc/lib/Xi/XGetFCtl.c@1.1.1.5.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XGetMMap.c pathrev: xsrc/xfree/xc/lib/Xi/XGetMMap.c@1.1.1.5.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XOpenDev.c pathrev: xsrc/xfree/xc/lib/Xi/XOpenDev.c@1.1.1.5.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xi/XQueryDv.c pathrev: xsrc/xfree/xc/lib/Xi/XQueryDv.c@1.1.1.5.34.1 type: modified - new: 1.1.1.6.32.1 old: 1.1.1.6 path: xsrc/xfree/xc/lib/Xi/XGetKMap.c pathrev: xsrc/xfree/xc/lib/Xi/XGetKMap.c@1.1.1.6.32.1 type: modified - new: 1.1.1.1.34.1 old: 1.1.1.1 path: xsrc/xfree/xc/lib/Xrender/Filter.c pathrev: xsrc/xfree/xc/lib/Xrender/Filter.c@1.1.1.1.34.1 type: modified - new: 1.1.1.5.34.1 old: 1.1.1.5 path: xsrc/xfree/xc/lib/Xrender/Xrender.c pathrev: xsrc/xfree/xc/lib/Xrender/Xrender.c@1.1.1.5.34.1 type: modified - new: 1.1.1.6.20.1 old: 1.1.1.6 path: xsrc/xfree/xc/lib/Xtst/XRecord.c pathrev: xsrc/xfree/xc/lib/Xtst/XRecord.c@1.1.1.6.20.1 type: modified - new: 1.1.1.6.20.1 old: 1.1.1.6 path: xsrc/xfree/xc/lib/Xv/Xv.c pathrev: xsrc/xfree/xc/lib/Xv/Xv.c@1.1.1.6.20.1 type: modified - new: 1.1.1.6.32.2 old: 1.1.1.6.32.1 path: xsrc/xfree/xc/programs/Xserver/include/dix.h pathrev: xsrc/xfree/xc/programs/Xserver/include/dix.h@1.1.1.6.32.2 type: modified id: 20161005T104900Z.c9808f17081367cd5338460715d91af3c1378841 log: "Apply patch, requested my mrg in ticket 1411:\n\txsrc/xfree/xc/lib/X11/FontNames.c\t\tpatch\n\txsrc/xfree/xc/lib/X11/GetImage.c\t\tpatch\n\txsrc/xfree/xc/lib/X11/ListExt.c\t\t\tpatch\n\txsrc/xfree/xc/lib/X11/ModMap.c\t\t\tpatch\n\txsrc/xfree/xc/lib/X11/Xlibint.h\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XGMotion.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XGetBMap.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XGetDCtl.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XGetFCtl.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XGetKMap.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XGetMMap.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XOpenDev.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xi/XQueryDv.c\t\t\tpatch\n\txsrc/xfree/xc/lib/Xrender/Filter.c\t\tpatch\n\txsrc/xfree/xc/lib/Xrender/Xrender.c\t\tpatch\n\txsrc/xfree/xc/lib/Xtst/XRecord.c\t\tpatch\n\txsrc/xfree/xc/lib/Xv/Xv.c\t\t\tpatch\n\txsrc/xfree/xc/programs/Xserver/include/dix.h\tpatch\n\nFix (backported from upstream) the following issues in X client\nlibraries:\nlibX11 - insufficient validation of data from the X server\n\t can cause out of boundary memory read (XGetImage())\n\t or write (XListFonts()).\n\t Affected versions libX11 <= 1.6.3\n\nlibXfixes - insufficient validation of data from the X server\n\tcan cause an integer overflow on 32 bit architectures.\n\tAffected versions : libXfixes <= 5.0.2\n\nlibXi - insufficient validation of data from the X server\n\tcan cause out of boundary memory access or\n\tendless loops (Denial of Service).\n\tAffected versions libXi <= 1.7.6\n\nlibXrandr - insufficient validation of data from the X server\n\tcan cause out of boundary memory writes.\n\tAffected versions: libXrandr <= 1.5.0\n\nlibXrender - insufficient validation of data from the X server\n\tcan cause out of boundary memory writes.\n\tAffected version: libXrender <= 0.9.9\n\nXRecord - insufficient validation of data from the X server\n\tcan cause out of boundary memory access or\n\tendless loops (Denial of Service).\n\t Affected version libXtst <= 1.2.2\n\nlibXv - insufficient validation of data from the X server\n\tcan cause out of boundary memory and memory corruption.\n\tCVE-2016-5407\n\taffected versions libXv <= 1.0.10\n\nlibXvMC - insufficient validation of data from the X server\n\tcan cause a one byte buffer read underrun.\n\tAffected versions: libXvMC <= 1.0.9\n" module: xsrc subject: 'CVS commit: [netbsd-6-1] xsrc/xfree/xc' unixtime: '1475664540' user: bouyer