Changelog
xorg-server (2:1.4.1~git20080118-1ubuntu1) hardy; urgency=low
* Merge with Debian unstable, remaining changes:
* debian/control:
- Change maintainer address.
- set Conflicts: xkb-data (<< 0.9), since xkb-path is
different compared to Dapper.
- xvfb Depends on xauth, xfonts-base.
* debian/patches:
- 100_avoid_acpi_insanity.diff
Don't send a configuration change event just because somebody's pressed
a brightness key.
- 101_fedora-apm-typedefs.patch:
Temporary hack from Fedora for broken kernels that don't publish the
/dev/apm_bios types.
- 102_ubuntu_sharevts_load_cpu.patch:
Close console fd only when using --sharevts.
- 103_fedora_openchrome.patch:
Patch from Fedora to use openchrome instead of via.
- 104_fedora_init_origins_fix.patch
Multihead initialization.
- 106_ubuntu_fpic_libxf86config.patch
Add -fPIC to makefiles for xfree86/parser.
- 107_fedora_dont_backfill_bg_none.patch
Disable backfilling of windows created with bg=none, which
otherwise would force a framebuffer readback.
- 110_fedora_no_move_damage.patch
Disable damage notifications on move for manually redirected windows.
- 120_fedora_xserver-xaa-evict-pixmaps.patch:
New version of the hack to copy textures from video memory. Shouldn't
break EXA anymore.
- 121_only_switch_vt_when_active.diff
Add a check to prevent the X server from changing the VT when
killing GDM from the console.
- 123_no_composite_for_xvfb_run.patch
Use "-extension Composite" to fix xvfb-run crashing.
- 133_psb_auto.patch
Add automatic detection of Poulsbo hardware when running
without a Device definition.
- 139_fedora_xserver-1.3.0-document-fontpath-correctly.patch
Fixes document fontpaths shown in the man page.
- 142_fedora_xserver-1.3.0-no-pseudocolor-composite.patch
Composite on 8bpp pseudocolor root windows appears to fail, so just
disable it on anything pseudocolor for safety.
- 144_fedora_xserver-1.3.0-xnest-exposures.patch:
Only collect xnest exposures for xexposes with non-zero height and width.
xorg-server (2:1.4.1~git20080118-1) unstable; urgency=low
[ Brice Goglin ]
* Add 42_dont_break_grab_and_focus_for_window_when_redirecting.diff
to prevent password authentication bypass, closes: #449108.
[ Julien Cristau ]
* New upstream snapshot
+ includes the security fixes from the previous version
+ fixes regression introduced by the fix for CVE-2007-6429 in the MIT-SHM
extension (closes: #461410)
xorg-server (2:1.4.1~git20080105-2) unstable; urgency=low
[ David Nusinow ]
* Improve dpms logging patch to correctly label message type
[ Brice Goglin ]
* Grab upstream commit db9ae863536fff80b5463d99e71dc47ae587980d
to set DEFAULT_DPI to 96 instead of 75.
[ Julien Cristau ]
* Fix multiple security issues
+ CVE-2007-6427: XInput Extension Memory Corruption
+ CVE-2007-6428: TOG-CUP Extension Memory Corruption
+ CVE-2007-6429: EVI Extension Integer Overflow,
MIT-SHM Extension Integer Overflow
+ CVE-2007-5760: XFree86-Misc Extension Invalid Array Index
+ CVE-2007-5958: file existence disclosure
+ CVE-2008-0006: PCF font parser buffer overflow
* Bump Standards-Version to 3.7.3 (no changes).
-- Timo Aaltonen <email address hidden> Sat, 19 Jan 2008 02:40:00 +0200