Opened 9 years ago

Closed 9 years ago

#6617 closed enhancement (fixed)


Reported by: Fernando de Oliveira Owned by: Fernando de Oliveira
Priority: normal Milestone: 7.8
Component: BOOK Version: SVN
Severity: normal Keywords:


MD5: 397e405566651150490ff493e463f1ad

(CVE-2015-3164, below, is for "Unauthorised local client access in XWayland":


[ANNOUNCE] xorg-server 1.17.2
Adam Jackson ajax at
Tue Jun 16 09:36:37 PDT 2015

This picks up a pile of fixes from master.  Notable highlights:

- Fix for CVE-2015-3164 in Xwayland
- Fix int10 setup for vesa
- Fix regression in server-interpreted auth
- Fix fb setup on big-endian CPUs
- Build fix for for gcc5

Complete changelog:


Change History (5)

comment:1 by Fernando de Oliveira, 9 years ago

This ticket needs someone to check several points (three patches, in the page):

It needs to be fixed for 32-bit machines and for cards which do not support
an hardware mouse pointer.

comment:2 by Armin K, 9 years ago

GCC patch was merged as-is in the 1.17 branch. Modesetting driver sw cursor should also be fixed, although the patch is way simpler it seems. Prime patch is non-upstreamable patch and will never be part of any release.

comment:3 by Fernando de Oliveira, 9 years ago

Owner: changed from blfs-book@… to Fernando de Oliveira
Status: newassigned

OK, I will take it, because the 32 bit part has been fixed:

which corresponds at

apparently, to:

Michel Dänzer (2):
      Add AC_SYS_LARGEFILE defines to dix-config.h
      modesetting: Include dix-config.h from dumb_bo.c

I have already verified that the gcc5 issue has been solved (by trying to apply the patch, not yet built it.

Also have rediffed the add_prime_support-1.patch

Last edited 9 years ago by Fernando de Oliveira (previous) (diff)

comment:4 by Fernando de Oliveira, 9 years ago

Have edited comment:3.

comment:5 by Fernando de Oliveira, 9 years ago

Resolution: fixed
Status: assignedclosed

fixed at r16135.

Note: See TracTickets for help on using tickets.