Codebase list xrdp / f1b131b
Refresh patches Dominik George 2 years ago
7 changed file(s) with 5 addition(s) and 66 deletion(s). Raw diff Collapse all Expand all
+1
-0
debian/changelog less more
22 * New upstream version.
33 * Acknowledge NMUs - thanks to arnaudr and carnil!
44 * Drop patch for CVE-2022-23613; included upstream.
5 * Refresh patches.
56
67 -- Dominik George <natureshadow@debian.org> Fri, 01 Apr 2022 12:08:42 +0200
78
+1
-1
debian/patches/config.diff less more
22
33 --- a/sesman/sesman.ini
44 +++ b/sesman/sesman.ini
5 @@ -95,7 +95,7 @@
5 @@ -110,7 +110,7 @@
66 ; CentOS 7 : param=/usr/bin/Xorg or param=Xorg
77 ; CentOS 8 : param=/usr/libexec/Xorg
88 ;
+0
-47
debian/patches/cve-2022-23613.diff less more
0 From: matt335672 <30179339+matt335672@users.noreply.github.com>
1 Date: Wed, 2 Feb 2022 10:39:50 +0000
2 Subject: [PATCH] Add lower bound to sesman data input size check
3 Origin: upstream, https://github.com/neutrinolabs/xrdp/commit/4def30ab
4
5 ---
6 sesman/sesman.c | 8 +++++---
7 1 file changed, 5 insertions(+), 3 deletions(-)
8
9 diff --git a/sesman/sesman.c b/sesman/sesman.c
10 index a85769053..e2b057e6a 100644
11 --- a/sesman/sesman.c
12 +++ b/sesman/sesman.c
13 @@ -276,6 +276,7 @@ sesman_close_all(void)
14 static int
15 sesman_data_in(struct trans *self)
16 {
17 +#define HEADER_SIZE 8
18 int version;
19 int size;
20
21 @@ -283,9 +284,9 @@ sesman_data_in(struct trans *self)
22 {
23 in_uint32_be(self->in_s, version);
24 in_uint32_be(self->in_s, size);
25 - if (size > self->in_s->size)
26 + if (size < HEADER_SIZE || size > self->in_s->size)
27 {
28 - LOG(LOG_LEVEL_ERROR, "sesman_data_in: bad message size");
29 + LOG(LOG_LEVEL_ERROR, "sesman_data_in: bad message size %d", size);
30 return 1;
31 }
32 self->header_size = size;
33 @@ -302,11 +303,12 @@ sesman_data_in(struct trans *self)
34 return 1;
35 }
36 /* reset for next message */
37 - self->header_size = 8;
38 + self->header_size = HEADER_SIZE;
39 self->extra_flags = 0;
40 init_stream(self->in_s, 0); /* Reset input stream pointers */
41 }
42 return 0;
43 +#undef HEADER_SIZE
44 }
45
46 /******************************************************************************/
+2
-2
debian/patches/lfs.diff less more
1313 AC_C_CONST
1414 AC_PROG_LIBTOOL
1515
16 @@ -465,6 +467,8 @@
16 @@ -507,6 +509,8 @@
1717 ])
1818
1919 AC_REQUIRE_AUX_FILE([tap-driver.sh])
5050 AC_C_CONST
5151 AC_PROG_LIBTOOL
5252 PKG_INSTALLDIR
53 @@ -53,5 +55,6 @@
53 @@ -65,5 +67,6 @@
5454 rfxcodec-uninstalled.pc
5555 ])
5656
+1
-1
debian/patches/make-fixes.diff less more
33
44 --- a/xrdp/Makefile.am
55 +++ b/xrdp/Makefile.am
6 @@ -19,7 +19,7 @@
6 @@ -21,7 +21,7 @@
77 if XRDP_RFXCODEC
88 AM_CPPFLAGS += -DXRDP_RFXCODEC
99 AM_CPPFLAGS += -I$(top_srcdir)/librfxcodec/include
+0
-2
debian/patches/series less more
00 make-fixes.diff
11 config.diff
22 fix_perms.diff
3 shutup-daemon.diff
43 systemd.diff
54 lfs.diff
65 pulse-debian.patch
76 var-run.diff
87 document-certs.diff
98 fix-environment.diff
10 cve-2022-23613.diff
+0
-13
debian/patches/shutup-daemon.diff less more
0 From: Thorsten Glaser <tg@mirbsd.org>
1 Subject: don’t spit on the console when starting
2
3 --- a/xrdp/xrdp.c
4 +++ b/xrdp/xrdp.c
5 @@ -630,7 +630,6 @@
6
7 if (0 != pid)
8 {
9 - g_writeln("daemon process %d started ok", pid);
10 /* exit, this is the main process */
11 g_deinit();
12 g_exit(0);