6aa00ecd4e
CVE-2020-14346, CVE-2020-14361, CVE-2020-14362 Multiple input validation failures in X server extensions ========================================================= All theses issuses can lead to local privileges elevation on systems where the X server is running privileged. * CVE-2020-14345 / ZDI CAN 11428 XkbSetNames Out-Of-Bounds Access The handler for the XkbSetNames request does not validate the request length before accessing its contents. * CVE-2020-14346 / ZDI CAN 11429 XIChangeHierarchy Integer Underflow An integer underflow exists in the handler for the XIChangeHierarchy request. * CVE-2020-14361 / ZDI CAN 11573 XkbSelectEvents Integer Underflow An integer underflow exist in the handler for the XkbSelectEvents request. * CVE-2020-1436 / ZDI CAN 11574 XRecordRegisterClients Integer Underflow An integer underflow exist in the handler for the CreateRegister request of the X record extension.
30 lines
975 B
Plaintext
30 lines
975 B
Plaintext
# Description: X Window System server
|
|
# URL: http://xorg.freedesktop.org
|
|
# Maintainer: CRUX Xorg Team, xorg-ports at crux dot nu
|
|
# Depends on: libepoxy xorg-bdftopcf xorg-font-util xorg-libdmx xorg-libxaw xorg-libxcomposite xorg-libxcursor xorg-libxfont2 xorg-libxft xorg-libxinerama xorg-libxkbfile xorg-libxres xorg-libxtst xorg-libxxf86dga xorg-mkfontscale xorg-xcb-util-keysyms
|
|
|
|
name=xorg-server
|
|
version=1.20.9
|
|
release=1
|
|
source=(https://www.x.org/releases/individual/xserver/$name-$version.tar.bz2)
|
|
|
|
build() {
|
|
cd $name-$version
|
|
|
|
./configure --prefix=/usr \
|
|
--localstatedir=/var \
|
|
--with-fontrootdir=/usr/share/fonts/X11 \
|
|
--with-xkb-output=/var/lib/xkb \
|
|
--enable-dri \
|
|
--with-sha1=libcrypto \
|
|
--disable-systemd-logind \
|
|
--enable-glamor
|
|
|
|
make
|
|
make DESTDIR=$PKG install
|
|
|
|
rmdir $PKG/var/log
|
|
|
|
install -m 755 -d $PKG/etc/X11/xorg.conf.d
|
|
}
|