Skip to content
Snippets Groups Projects
  1. Apr 19, 2023
  2. Apr 14, 2023
  3. Apr 12, 2023
  4. Apr 07, 2023
  5. Apr 06, 2023
    • Alessandro Bono's avatar
      ddxLoad: Check XDG_RUNTIME_DIR before fallback to /tmp/ · bddcaf08
      Alessandro Bono authored and Peter Hutterer's avatar Peter Hutterer committed
      The XKM_OUTPUT_DIR folder by default is defined as ${datadir}/X11/xkb/compiled
      and it is usually defined as /var/lib/xkb or %{_localstatedir}/lib/xkb by
      distributions. If X is executed as non-root it won't have permissions to write
      into that folder. If we fallback directly to /tmp we might get name collisions:
      ```
      > Error: Cannot open "/tmp/server-10.xkm" to write keyboard description
      > Exiting
      ```
      
      Where the file /tmp/server-10.xkm already exists but is owned by another user
      that previously executed X and had the display number 10. This is specially
      problematic when exeuting Xvfb.
      
      Before falling back to /tmp/ check first the XDG_RUNTIME_DIR.
      bddcaf08
  6. Apr 03, 2023
  7. Mar 29, 2023
    • Olivier Fourdan's avatar
      composite: Fix use-after-free of the COW · 26ef545b
      Olivier Fourdan authored
      
      ZDI-CAN-19866/CVE-2023-1393
      
      If a client explicitly destroys the compositor overlay window (aka COW),
      we would leave a dangling pointer to that window in the CompScreen
      structure, which will trigger a use-after-free later.
      
      Make sure to clear the CompScreen pointer to the COW when the latter gets
      destroyed explicitly by the client.
      
      This vulnerability was discovered by:
      Jan-Niklas Sohn working with Trend Micro Zero Day Initiative
      
      Signed-off-by: default avatarOlivier Fourdan <ofourdan@redhat.com>
      Reviewed-by: Adam Jackson's avatarAdam Jackson <ajax@redhat.com>
      26ef545b
  8. Mar 27, 2023
    • Benno Schulenberg's avatar
      xkbUtils: use existing symbol names instead of deleted deprecated ones · 6153c71c
      Benno Schulenberg authored
      Symbols `XK_Cyrillic_DZHE` and `XK_Serbian_DZE` were pure synonyms.
      6153c71c
    • Michel Dänzer's avatar
      xwayland: Prevent nested xwl_present_for_each_frame_callback calls · 754d6b6d
      Michel Dänzer authored
      It could happen with the following call path:
      
      frame_callback
       xwl_present_frame_callback
        xwl_present_msc_bump
         xwl_present_execute
          xwl_present_flip
           xwl_window_create_frame_callback
      
      The nested loop called xwl_present_reset_timer, which may end up calling
      xorg_list_del for the entry after the one frame_callback started the
      chain for. This resulted in the outer loop never terminating, because
      its next element wasn't hooked up to the list anymore.
      
      We avoid this by calling xwl_present_reset_timer as needed in
      frame_callback, and bailing from xwl_window_create_frame_callback if it
      was called from the former.
      
      We also catch nested calls and FatalError if they ever happen again due
      to another bug.
      
      v2:
      * Leave xwl_present_reset_timer call in xwl_present_frame_callback,
        needed if xwl_present_msc_bump didn't hook up the window to the frame
        callback list again.
      
      Closes: xorg/xserver#1442
      754d6b6d
    • Michel Dänzer's avatar
      xwayland: Refactor xwl_present_for_each_frame_callback helper · 4d1cd7cd
      Michel Dänzer authored
      Preparation for following changes, no functional change intended.
      4d1cd7cd
  9. Mar 22, 2023
  10. Mar 17, 2023
  11. Mar 15, 2023
  12. Mar 14, 2023
  13. Mar 08, 2023
  14. Mar 03, 2023
  15. Mar 01, 2023
Loading