xorg-server-lts-xenial 2:1.18.3-1ubuntu2.3~trusty4 source package in Ubuntu
Changelog
xorg-server-lts-xenial (2:1.18.3-1ubuntu2.3~trusty4) trusty-security; urgency=medium
* SECURITY UPDATE: unvalidated extra length in ProcEstablishConnection
- debian/patches/CVE-2017-12176.patch: add check to dix/dispatch.c.
- CVE-2017-12176
* SECURITY UPDATE: Unvalidated variable-length request in
ProcDbeGetVisualInfo
- debian/patches/CVE-2017-12177.patch: add check to dbe/dbe.c.
- CVE-2017-12177
* SECURITY UPDATE: wrong extra length check in ProcXIChangeHierarchy
- debian/patches/CVE-2017-12178.patch: fix length check in
Xi/xichangehierarchy.c.
- CVE-2017-12178
* SECURITY UPDATE: integer overflow and unvalidated length in
ProcXIBarrierReleasePointer
- debian/patches/CVE-2017-12179-1.patch: test exact size of
XIBarrierReleasePointer in Xi/xibarriers.c.
- debian/patches/CVE-2017-12179-2.patch: add checks to Xi/xibarriers.c.
- CVE-2017-12179
* SECURITY UPDATE: various unvalidated lengths
- debian/patches/CVE-2017-12180-12182.patch: add more checks to
Xext/vidmode.c, hw/xfree86/common/xf86DGA.c,
hw/xfree86/dri/xf86dri.c.
- CVE-2017-12180
- CVE-2017-12181
- CVE-2017-12182
* SECURITY UPDATE: more unvalidated lengths
- debian/patches/CVE-2017-12183.patch: add checks to xfixes/cursor.c,
xfixes/region.c, xfixes/saveset.c, xfixes/xfixes.c.
- CVE-2017-12183
* SECURITY UPDATE: even more unvalidated lengths
- debian/patches/CVE-2017-12184-12187.patch: add more checks to
Xext/panoramiX.c, Xext/saver.c, Xext/xres.c, Xext/xvdisp.c,
hw/dmx/dmxpict.c, pseudoramiX/pseudoramiX.c, render/render.c.
- CVE-2017-12184
- CVE-2017-12185
- CVE-2017-12186
- CVE-2017-12187
* debian/patches/os_big_requests.patch: make sure big requests have
sufficient length in os/io.c.
* debian/patches/xkb_escape_fix.patch: escape non-printable characters
correctly in xkb/xkbtext.c.
-- Marc Deslauriers <email address hidden> Fri, 13 Oct 2017 09:02:55 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Trusty
- Original maintainer:
- Ubuntu X-SWAT
- Architectures:
- any all
- Section:
- x11
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Trusty | updates | main | x11 | |
| Trusty | security | main | x11 |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| xorg-server-lts-xenial_1.18.3.orig.tar.gz | 7.9 MiB | 9b872f946b912f11a0ffc911d936764fce604ee4ac65ee1f131b78b3e89ede26 |
| xorg-server-lts-xenial_1.18.3-1ubuntu2.3~trusty4.diff.gz | 307.8 KiB | 545d34a46b32eb44ddb290fc1187c86e194369b2d83e69dde64446021a9fa876 |
| xorg-server-lts-xenial_1.18.3-1ubuntu2.3~trusty4.dsc | 4.6 KiB | 2e4e092063873e7581acf74dfcb5c308fb04e52d34d4509ad96cfbc402ef1b68 |
Available diffs
Binary packages built by this source
- xorg-server-source-lts-xenial: Xorg X server - source files
This package provides original Debian (with Debian patches already
applied, and autotools files updated) sources for the X.Org ('Xorg')
X server shipped in a tarball. This enables other projects re-using
X server codebase (e.g. VNC servers) to (re-)use officially
Debian-supported version of the X xserver for their builds.
.
Unless you are building a software product using X server sources,
you probably want xserver-xorg and/or xserver-xorg-core instead.
- xserver-xephyr-lts-xenial: nested X server
Xephyr is an X server that can be run inside another X server,
much like Xnest. It is based on the kdrive X server, and as a
result it supports newer extensions than Xnest, including render and
composite.
.
More information about X.Org can be found at:
<URL:http://www.X.org>
.
This package is built from the X.org xserver module.
- xserver-xephyr-lts-xenial-dbgsym: debug symbols for package xserver-xephyr-lts-xenial
Xephyr is an X server that can be run inside another X server,
much like Xnest. It is based on the kdrive X server, and as a
result it supports newer extensions than Xnest, including render and
composite.
.
More information about X.Org can be found at:
<URL:http://www.X.org>
.
This package is built from the X.org xserver module.
- xserver-xorg-core-lts-xenial: Xorg X server - core server
The Xorg X server is an X server for several architectures and operating
systems, which is derived from the XFree86 4.x series of X servers.
.
The Xorg server supports most modern graphics hardware from most vendors,
and supersedes all XFree86 X servers.
.
More information about X.Org can be found at:
<URL:http://www.X.org>
.
This package is built from the X.org xserver module.
- xserver-xorg-core-lts-xenial-dbg: Xorg - the X.Org X server (debugging symbols)
The Xorg X server is an X server for several architectures and operating
systems, which is derived from the XFree86 4.x series of X servers.
.
The Xorg server supports most modern graphics hardware from most vendors,
and supersedes all XFree86 X servers.
.
This package provides debugging symbols for the Xorg X server and associated
modules.
- xserver-xorg-core-lts-xenial-dbgsym: debug symbols for package xserver-xorg-core-lts-xenial
The Xorg X server is an X server for several architectures and operating
systems, which is derived from the XFree86 4.x series of X servers.
.
The Xorg server supports most modern graphics hardware from most vendors,
and supersedes all XFree86 X servers.
.
More information about X.Org can be found at:
<URL:http://www.X.org>
.
This package is built from the X.org xserver module.
- xserver-xorg-dev-lts-xenial: Xorg X server - development files
This package provides development files for the X.Org ('Xorg') X server.
This is not quite the same as the DDK (Driver Development Kit) from the
XFree86 4.x and X.Org 6.7, 6.8 and 6.9 series of servers; it provides
headers and a pkg-config file for drivers using autotools to build
against.
.
Unless you are developing or building a driver, you probably want
xserver-xorg and/or xserver-xorg-core instead.
.
More information about X.Org can be found at:
<URL:http://www.X.org>
.
This package is built from the X.org xserver module.
- xwayland-lts-xenial: Xwayland X server
This package provides an X server running on top of wayland, using wayland
input devices for input and forwarding either the root window or individual
top-level windows as wayland surfaces.
- xwayland-lts-xenial-dbgsym: debug symbols for package xwayland-lts-xenial
This package provides an X server running on top of wayland, using wayland
input devices for input and forwarding either the root window or individual
top-level windows as wayland surfaces.
