libx11 (2:1.7.5-1ubuntu0.3) jammy-security; urgency=medium
* SECURITY UPDATE: out-of-bounds memory access in _XkbReadKeySyms()
- d/p/0001-CVE-2023-43785-out-of-bounds-memory-access-in-_XkbRe.patch
- CVE-2023-43785
* SECURITY UPDATE: stack exhaustion from infinite recursion in
PutSubImage()
- d/p/0002-CVE-2023-43786-stack-exhaustion-from-infinite-recurs.patch
- d/p/0003-XPutImage-clip-images-to-maximum-height-width-allowe.patch
- CVE-2023-43786
* SECURITY UPDATE: integer overflow in XCreateImage() leading to a heap
overflow
- d/p/0004-XCreatePixmap-trigger-BadValue-error-for-out-of-rang.patch
- d/p/0005-CVE-2023-43787-Integer-overflow-in-XCreateImage-lead.patch
- CVE-2023-43787
-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 02 Oct 2023 15:13:58 -0400
libx11 (2:1.7.5-1ubuntu0.2) jammy-security; urgency=medium
* SECURITY UPDATE: multiple buffer overflows
- debian/patches/CVE-2023-3138.patch: add bounds checks for extension
request, event, & error codes in src/InitExt.c.
- CVE-2023-3138
-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 13 Jun 2023 07:25:59 -0400
libx11 (2:1.7.5-1) unstable; urgency=medium
* New upstream release. (Closes: #1008890)
-- Timo Aaltonen <tjaalton@debian.org> Sun, 03 Apr 2022 22:29:52 +0300
libx11 (2:1.7.4-1) unstable; urgency=medium
* New upstream release.
* 0001-makekeys..patch: Deleted, upstream.
* patches: Refreshed.
* Update signing-key.asc.
-- Timo Aaltonen <tjaalton@debian.org> Thu, 31 Mar 2022 22:21:59 +0300
libx11 (2:1.7.2-2) unstable; urgency=medium
* Add an upstream commit to handle new _EVDEVK symbols.
-- Timo Aaltonen <tjaalton@debian.org> Wed, 15 Sep 2021 09:18:20 +0300
libx11 (2:1.7.2-1) unstable; urgency=medium
[ Timo Aaltonen ]
* New upstream release. (Closes: #990998)
[ Julien Cristau ]
* Fix Vcs-Git control field.
-- Timo Aaltonen <tjaalton@debian.org> Mon, 26 Jul 2021 11:29:39 +0300
libx11 (2:1.7.1-1) unstable; urgency=medium
[ Julien Cristau ]
* libx11-6 Breaks old libx11-xcb1, as further mitigation for bug
#979590.
[ Emilio Pozuelo Monfort ]
* New upstream release.
* CVE-2021-31535: X protocol command injection due to missing request
length checks (closes: #988737)
-- Emilio Pozuelo Monfort <pochu@debian.org> Wed, 19 May 2021 17:22:09 +0200
libx11 (2:1.7.0-2) unstable; urgency=medium
* Set a strict dependency of libx11-xcb1 on libx11-6, as internal ABI
may change across releases - and indeed did change between 1.6.12 and
1.7.0 (closes: #979590)
* Update upstream git URL in package descriptions.
-- Julien Cristau <jcristau@debian.org> Mon, 11 Jan 2021 12:15:25 +0100
libx11 (2:1.7.0-1) unstable; urgency=medium
* New upstream release.
* patches: Refreshed.
* signing-key: Added key from Keith Packard.
* symbols: Updated.
-- Timo Aaltonen <tjaalton@debian.org> Wed, 06 Jan 2021 20:47:58 +0200
libx11 (2:1.6.12-1) unstable; urgency=medium
* New upstream release.
* 001_xim_regression.diff: Dropped, upstream.
-- Timo Aaltonen <tjaalton@debian.org> Thu, 17 Sep 2020 13:11:41 +0300
# For older changelog entries, run 'apt-get changelog libx11-6'
Generated by dwww version 1.14 on Thu Jan 23 03:22:41 CET 2025.