OpenBSD/xenocara NDTa0I6lib/mesa/src/gallium/auxiliary/gallivm lp_bld_misc.cpp lp_bld_init.c

   Tell LLVM to generate code with BTI instructions.

   "looks ok" jsg@, ok deraadt@
VersionDeltaFile
1.18+7-0lib/mesa/src/gallium/auxiliary/gallivm/lp_bld_misc.cpp
1.16+4-0lib/mesa/src/gallium/auxiliary/gallivm/lp_bld_init.c
1.11+4-0lib/mesa/src/gallium/auxiliary/gallivm/lp_bld_misc.h
+15-03 files

OpenBSD/xenocara XVAq5vQlib/mesa/include/pci_ids iris_pci_ids.h

   intel/dev: Add 2 additional ADL-N PCI ids

   From Jordan Justen
   62b72b6be9742c655d381348c6b161afc6b5396f in mainline Mesa
VersionDeltaFile
1.15+2-0lib/mesa/include/pci_ids/iris_pci_ids.h
+2-01 files

OpenBSD/xenocara QmWUVYZlib/mesa/src/mesa/main dlist.c

   Fix off-by-one in dlist allocation when checking whether to allocate a
   new block. This fixes segfaults in dlist functions that occur on
   applications making heavy use of display lists that exceed BLOCK_SIZE.

   ok jsg@ and stsp@, who also both helped me track down the issue.
VersionDeltaFile
1.16+1-1lib/mesa/src/mesa/main/dlist.c
+1-11 files

OpenBSD/xenocara fwtVzGp. 3RDPARTY

   update
VersionDeltaFile
1.422+3-33RDPARTY
+3-31 files

OpenBSD/xenocara lldUfoCdistrib/sets/lists/xbase md.loongson md.macppc

   sync
VersionDeltaFile
1.145+2-2distrib/sets/lists/xbase/md.loongson
1.202+2-2distrib/sets/lists/xbase/md.macppc
1.82+2-2distrib/sets/lists/xbase/md.octeon
1.25+2-2distrib/sets/lists/xbase/md.powerpc64
1.14+2-2distrib/sets/lists/xbase/md.riscv64
1.204+2-2distrib/sets/lists/xbase/md.sparc64
+12-124 files not shown
+20-2010 files

OpenBSD/xenocara 5TUt2I0lib/libdrm xf86drm.c xf86drm.h, lib/libdrm/generated generated_static_table_fourcc.h

   Merge libdrm 2.4.120
VersionDeltaFile
1.15+244-19lib/libdrm/include/drm/drm.h
1.45+46-29lib/libdrm/xf86drm.c
1.26+16-7lib/libdrm/xf86drm.h
1.30+12-2lib/libdrm/xf86drmMode.c
1.22+8-1lib/libdrm/xf86drmMode.h
1.4+3-0lib/libdrm/generated/generated_static_table_fourcc.h
+329-584 files not shown
+333-6110 files

OpenBSD/xenocara 1B44jdKlib/libdrm meson.build, lib/libdrm/include/drm drm_mode.h drm.h

   Import libdrm 2.4.120
VersionDeltaFile
1.1.1.5+697-77lib/libdrm/tests/util/pattern.c
1.1.1.16+246-57lib/libdrm/tests/modetest/modetest.c
1.1.1.12+257-37lib/libdrm/include/drm/drm_mode.h
1.1.1.13+244-19lib/libdrm/include/drm/drm.h
1.1.1.14+163-44lib/libdrm/tests/amdgpu/amdgpu_test.c
1.1.1.11+41-89lib/libdrm/meson.build
+1,648-32340 files not shown
+2,159-43646 files

OpenBSD/xenocara BlfYYj8. MODULES

   update
VersionDeltaFile
1.515+6-7MODULES
+6-71 files

OpenBSD/xenocara jdDwv41app/xbiff configure install-sh

   Update to xbiff 1.0.5
VersionDeltaFile
1.12+3,713-3,168app/xbiff/configure
1.4+216-202app/xbiff/install-sh
1.5+102-0app/xbiff/ChangeLog
1.12+53-33app/xbiff/aclocal.m4
1.4+45-19app/xbiff/xbiff.c
1.4+15-15app/xbiff/Mailbox.c
+4,144-3,4376 files not shown
+4,179-3,46112 files

OpenBSD/xenocara Wvpu04Lapp/xeyes configure install-sh

   Update to xeyes 1.3.0
VersionDeltaFile
1.13+3,518-3,121app/xeyes/configure
1.4+216-202app/xeyes/install-sh
1.5+117-40app/xeyes/Eyes.c
1.6+88-0app/xeyes/ChangeLog
1.13+45-25app/xeyes/aclocal.m4
1.6+40-13app/xeyes/xeyes.c
+4,024-3,4019 files not shown
+4,068-3,42315 files

OpenBSD/xenocara 15tbHZIapp/fonttosfnt configure install-sh

   Update to fonttosfnt 1.2.3
VersionDeltaFile
1.15+3,504-3,092app/fonttosfnt/configure
1.3+216-202app/fonttosfnt/install-sh
1.5+95-96app/fonttosfnt/struct.c
1.8+92-0app/fonttosfnt/ChangeLog
1.8+30-44app/fonttosfnt/write.c
1.13+45-25app/fonttosfnt/aclocal.m4
+3,982-3,4598 files not shown
+4,008-3,49114 files

OpenBSD/xenocara Gxx60Grxserver ChangeLog configure, xserver/randr rrmonitor.c

   Update to xserver 21.1.11.
   All the security fixes have already been committed.
VersionDeltaFile
1.47+858-583xserver/ChangeLog
1.86+14-14xserver/configure
1.5+0-22xserver/randr/rrmonitor.c
1.6+2-2xserver/meson.build
1.81+2-2xserver/configure.ac
+876-6235 files

OpenBSD/xenocara CgRJq64app/xlockmore/xlock privsep.c

   Rewrite the privsep imsg code using the new ibuf API.

   Properly wrap the imsg_read() / imsg_get() calls in a while loop.
   Do not initialize the fd of the struct ibuf to -1 (this is already done).
   Rewrite the imsg parser using imsg_get_ibuf(), ibuf_get and a local new
   function ibuf_get_string() which abstracts the extraction of the strings
   from the ibuf.
   Properly clear and free the user, pass and style variables.

   OK tb@ matthieu@
VersionDeltaFile
1.4+63-60app/xlockmore/xlock/privsep.c
+63-601 files

OpenBSD/xenocara FHpzT4Qxserver/hw/xfree86/common xf86AutoConfig.c

   WSDISPLAY_TYPE_RKDRM was renamed to WSDISPLAY_TYPE_KMS
VersionDeltaFile
1.33+1-1xserver/hw/xfree86/common/xf86AutoConfig.c
+1-11 files

OpenBSD/xenocara xoLiMcyxserver/Xi xichangehierarchy.c xiquerypointer.c, xserver/dix enterleave.c devices.c

   Fix multiple heap buffer overflows, out of bounds memory accesses and
   memory corruption in the GLX, SELinux and Xi extensions as well as in
   the main device and cursor handling code.
   CVE-2023-6816 CVE-2024-0229 CVE-2024-21885 CVE-2024-21886
   CVE-2024-0408 CVE-2024-0409

   this is errata/7.4/012_xserver.patch.sig
VersionDeltaFile
1.10.10.1+54-70xserver/dix/enterleave.c
1.13.16.1+24-7xserver/Xi/xichangehierarchy.c
1.28.10.2+24-3xserver/dix/devices.c
1.20.10.1+8-0xserver/glx/glxcmds.c
1.9.20.1+1-2xserver/Xi/xiquerypointer.c
1.3.20.1+1-1xserver/hw/kdrive/ephyr/ephyrcursor.c
+112-831 files not shown
+113-837 files

OpenBSD/xenocara pcqJuO1xserver/Xi xichangehierarchy.c xiquerypointer.c, xserver/dix enterleave.c devices.c

   Fix multiple heap buffer overflows, out of bounds memory accesses and
   memory corruption in the GLX, SELinux and Xi extensions as well as in
   the main device and cursor handling code.
   CVE-2023-6816 CVE-2024-0229 CVE-2024-21885 CVE-2024-21886
   CVE-2024-0408 CVE-2024-0409

   this is errata/7.3/025_xserver.patch.sig
VersionDeltaFile
1.10.6.1+54-70xserver/dix/enterleave.c
1.13.12.1+24-7xserver/Xi/xichangehierarchy.c
1.28.6.2+24-3xserver/dix/devices.c
1.20.6.1+8-0xserver/glx/glxcmds.c
1.9.16.1+1-2xserver/Xi/xiquerypointer.c
1.3.16.1+1-1xserver/hw/kdrive/ephyr/ephyrcursor.c
+112-831 files not shown
+113-837 files

OpenBSD/xenocara 9aqhy10. MODULES 3RDPARTY

   update
VersionDeltaFile
1.514+4-3MODULES
1.421+2-23RDPARTY
+6-52 files

OpenBSD/xenocara lihrOxlxserver/Xi xichangehierarchy.c xiquerypointer.c, xserver/dix enterleave.c devices.c

   Multiple issues have been found in the X server and Xwayland
   implementations:

   1) CVE-2023-6816 can be triggered by passing an invalid array index to
   DeviceFocusEvent or ProcXIQueryPointer.

   2) CVE-2024-0229 can be triggered if a device has both a button and a
   key class and zero buttons.

   3) CVE-2024-21885 can be triggered if a device with a given ID was
   removed and a new device with the same ID added both in the same
   operation.

   4) CVE-2024-21886 can be triggered by disabling a master device with
   disabled slave devices.

   5) CVE-2024-0409 can be triggered by enabling SELinux
   xserver_object_manager and running a client.


    [2 lines not shown]
VersionDeltaFile
1.11+54-70xserver/dix/enterleave.c
1.14+24-7xserver/Xi/xichangehierarchy.c
1.30+24-3xserver/dix/devices.c
1.21+8-0xserver/glx/glxcmds.c
1.10+1-2xserver/Xi/xiquerypointer.c
1.4+1-1xserver/hw/kdrive/ephyr/ephyrcursor.c
+112-831 files not shown
+113-837 files

OpenBSD/xenocara csrdh7Nxserver ChangeLog configure, xserver/hw/kdrive/ephyr ephyrinit.c

   Update xserver to 21.1.10.

   The security fixes have already been committed.
VersionDeltaFile
1.46+69-0xserver/ChangeLog
1.18+15-17xserver/hw/kdrive/ephyr/ephyrinit.c
1.85+14-14xserver/configure
1.5+2-2xserver/meson.build
1.80+2-2xserver/configure.ac
+102-355 files

OpenBSD/xenocara bnmpBae. 3RDPARTY MODULES

   update
VersionDeltaFile
1.420+6-63RDPARTY
1.513+3-3MODULES
+9-92 files

OpenBSD/xenocara OjvpsBsapp/xterm Makefile

   Substitute "100" for __default_termid__ instead of "vt100".

   The "vt" prefix is optional for the default terminal ID.
   Fixes an instance of "vtvt100" in the installed man page.
   OK matthieu@
VersionDeltaFile
1.38+2-2app/xterm/Makefile
+2-21 files

OpenBSD/xenocara hSF7ZJCapp/xlockmore/xlock xlock.c

   Replace another memset() with explicit_bzero() since the goal is the reason
   why we have explicit_bzero().
   OK matthieu@
VersionDeltaFile
1.5+1-1app/xlockmore/xlock/xlock.c
+1-11 files

OpenBSD/xenocara osjpA7oapp/xlockmore/xlock privsep.c

   Use proper len in strndup() call for the style argument.
   OK matthieu@
VersionDeltaFile
1.3+2-2app/xlockmore/xlock/privsep.c
+2-21 files

OpenBSD/xenocara 5LINBWYxserver/randr rrproperty.c rrproviderproperty.c

   randr: avoid integer truncation in length check of ProcRRChange*Property
   CVE-2023-6478
VersionDeltaFile
1.12.20.2+1-1xserver/randr/rrproperty.c
1.3.32.1+1-1xserver/randr/rrproviderproperty.c
+2-22 files

OpenBSD/xenocara CLLC8SPxserver/Xi exevents.c, xserver/dix devices.c

   Xi: allocate enough XkbActions for our buttons
   CVE-2023-6377
VersionDeltaFile
1.27.6.1+6-6xserver/Xi/exevents.c
1.28.10.1+11-0xserver/dix/devices.c
+17-62 files

OpenBSD/xenocara V7KYWrpxserver/randr rrproperty.c rrproviderproperty.c

   randr: avoid integer truncation in length check of ProcRRChange*Property
   CVE-2023-6478
VersionDeltaFile
1.12.16.2+1-1xserver/randr/rrproperty.c
1.3.28.1+1-1xserver/randr/rrproviderproperty.c
+2-22 files

OpenBSD/xenocara GewCa7rxserver/Xi exevents.c, xserver/dix devices.c

   Xi: allocate enough XkbActions for our buttons
   CVE-2023-6377
VersionDeltaFile
1.27.2.1+6-6xserver/Xi/exevents.c
1.28.6.1+11-0xserver/dix/devices.c
+17-62 files

OpenBSD/xenocara jcErMpnxserver/Xi exevents.c

   The previous fix from X.Org was incorrect. This fixes it.
   Xi: allocate enough XkbActions for our buttons
   CVE-2023-6377
VersionDeltaFile
1.29+5-9xserver/Xi/exevents.c
+5-91 files

OpenBSD/xenocara Cfu2yfBxserver/randr rrproviderproperty.c rrproperty.c

   randr: avoid integer truncation in length check of ProcRRChange*Property
   CVE-2023-6478
VersionDeltaFile
1.4+1-1xserver/randr/rrproviderproperty.c
1.14+1-1xserver/randr/rrproperty.c
+2-22 files

OpenBSD/xenocara 94RbfFWxserver/Xi exevents.c, xserver/dix devices.c

   Xi: allocate enough XkbActions for our buttons
   CVE-2023-6377
VersionDeltaFile
1.29+11-0xserver/dix/devices.c
1.28+6-2xserver/Xi/exevents.c
+17-22 files