Package: xrdp / 0.9.1-9+deb9u3

Metadata

Package Version Patches format
xrdp 0.9.1-9+deb9u3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
make fixes.diff | (download)

Makefile.am | 1 1 + 0 - 0 !
configure.ac | 8 8 + 0 - 0 !
xrdp/Makefile.am | 2 1 + 1 - 0 !
xrdpapi/Makefile.am | 6 6 + 0 - 0 !
4 files changed, 16 insertions(+), 1 deletion(-)

 build system fixes
 recurse into xorgxrdp/ as well (make into proper configure option?)
 also, actually install keymaps shipped
config.diff | (download)

sesman/sesman.ini | 19 5 + 14 - 0 !
xrdp/xrdp.ini | 10 0 + 10 - 0 !
2 files changed, 5 insertions(+), 24 deletions(-)

 use xorgxrdp instead of x11rdp

misc fixes.diff | (download)

xorgxrdp/xrdpkeyb/rdpKeyboard.c | 9 6 + 3 - 0 !
1 file changed, 6 insertions(+), 3 deletions(-)

 misc. fixes
fix_perms.diff | (download)

common/os_calls.c | 2 1 + 1 - 0 !
xorg/X11R7.6/rdp/rdpup.c | 2 1 + 1 - 0 !
xorgxrdp/module/rdpClientCon.c | 3 2 + 1 - 0 !
3 files changed, 4 insertions(+), 3 deletions(-)

 fix permissions between xrdp and sesman.
 Attempt to fix connection problem between xrdp-sesman (running
 as root) and xrdp (running as xrdp) by creating the socket for
 the xorgxrdp server as 0660 in a sgid-xrdp directory, since we
 can’t easily chgrp here; also fix retval check for listen(2)
shutup daemon.diff | (download)

common/log.c | 5 0 + 5 - 0 !
sesman/sesman.c | 6 6 + 0 - 0 !
xrdp/xrdp.c | 1 0 + 1 - 0 !
3 files changed, 6 insertions(+), 6 deletions(-)

 don’t spit on the console when starting

sockpath.diff | (download)

common/file_loc.h | 10 5 + 5 - 0 !
common/os_calls.c | 12 2 + 10 - 0 !
docs/man/xrdp-chansrv.8 | 4 2 + 2 - 0 !
docs/man/xrdp-dis.1 | 2 1 + 1 - 0 !
instfiles/xrdp.service | 3 3 + 0 - 0 !
sesman/chansrv/pulse/module-xrdp-sink.c | 2 1 + 1 - 0 !
sesman/chansrv/pulse/module-xrdp-source.c | 2 1 + 1 - 0 !
sesman/sessvc/sessvc.c | 4 2 + 2 - 0 !
sesman/tools/dis.c | 2 1 + 1 - 0 !
xorg/X11R7.6/rdp/rdpmain.c | 4 2 + 2 - 0 !
xorg/X11R7.6/rdp/rdpup.c | 13 4 + 9 - 0 !
xorgxrdp/module/rdpClientCon.c | 13 3 + 10 - 0 !
xrdp/xrdp.ini | 4 2 + 2 - 0 !
xrdpapi/xrdpapi.c | 2 1 + 1 - 0 !
14 files changed, 30 insertions(+), 47 deletions(-)

 change location of the socket path to something less racy
 also, rely on the initscript to create it with correct permissions and ownership

kfreebsd.diff | (download)

common/os_calls.c | 4 2 + 2 - 0 !
configure.ac | 3 3 + 0 - 0 !
librfxcodec/acinclude.m4 | 2 1 + 1 - 0 !
sesman/session.c | 2 1 + 1 - 0 !
xorgxrdp/acinclude.m4 | 2 1 + 1 - 0 !
5 files changed, 8 insertions(+), 5 deletions(-)

 recognise gnu/kfreebsd as freebsd variant in code,
 but as a Linux for instfiles/ (init scripts and so on)
systemd.diff | (download)

instfiles/xrdp-sesman.service | 8 5 + 3 - 0 !
instfiles/xrdp.service | 8 6 + 2 - 0 !
2 files changed, 11 insertions(+), 5 deletions(-)

 fixes to systemd service files
lfs.diff | (download)

configure.ac | 3 3 + 0 - 0 !
libpainter/configure.ac | 3 3 + 0 - 0 !
librfxcodec/configure.ac | 3 3 + 0 - 0 !
xorgxrdp/configure.ac | 3 3 + 0 - 0 !
4 files changed, 12 insertions(+)

 enable large file support on (at least) 32-bit linux
kb_jp.diff | (download)

xrdp/xrdp_keyboard.ini | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

 xrdp: fails to detect some japanese keyboard
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854847
Bug: https://github.com/neutrinolabs/xrdp/issues/663

highres.diff | (download)

xrdp/xrdp_encoder.c | 17 11 + 6 - 0 !
1 file changed, 11 insertions(+), 6 deletions(-)

 rfx fixes for large tile sets.
 This patch disables the limitation of rects to use and then
 dynamically calculates the size of the message from the
 rects that are really used.
Bug-Debian: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855387
Bug: https://github.com/neutrinolabs/xrdp/issues/524

cve 2017 6967.diff | (download)

sesman/scp_v0.c | 9 8 + 1 - 0 !
sesman/scp_v1.c | 19 15 + 4 - 0 !
sesman/session.c | 6 3 + 3 - 0 !
3 files changed, 26 insertions(+), 8 deletions(-)

 [patch] sesman: move auth/pam calls to main process
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858143
fix 876976.patch | (download)

common/ssl_calls.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 if ssl_shutdown fails, only call one more time
Bug: https://github.com/neutrinolabs/xrdp/issues/872
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876976

cve 2017 16927.patch | (download)

sesman/libscp/libscp_v0.c | 32 25 + 7 - 0 !
1 file changed, 25 insertions(+), 7 deletions(-)

 sesman: scpv0, accept variable length data fields
fix ssl accept load.patch | (download)

common/ssl_calls.c | 11 11 + 0 - 0 !
1 file changed, 11 insertions(+)

 avoid 100% cpu load on ssl_tls_accept