From nobody Sun Feb 26 16:14:43 2023 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4PPpch1RJkz3tlNG for ; Sun, 26 Feb 2023 16:15:00 +0000 (UTC) (envelope-from rol@robert-eckardt.de) Received: from serv15.avernis.de (serv15.avernis.de [IPv6:2a01:4f8:151:30a2::163]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4PPpcf6MYMz3rbK for ; Sun, 26 Feb 2023 16:14:58 +0000 (UTC) (envelope-from rol@robert-eckardt.de) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=robert-eckardt.de header.s=mail header.b="DLR/CxvE"; spf=pass (mx1.freebsd.org: domain of rol@robert-eckardt.de designates 2a01:4f8:151:30a2::163 as permitted sender) smtp.mailfrom=rol@robert-eckardt.de; dmarc=none Received: from postit (ip-088-153-206-046.um27.pools.vodafone-ip.de [88.153.206.46]) by serv15.avernis.de (Postfix) with ESMTPSA id 4B59BBDE54FD for ; Sun, 26 Feb 2023 17:14:50 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=robert-eckardt.de; s=mail; t=1677428090; bh=8NeVky1+KaRF/WJvtKyqR8ruGCKxo8fjDomKbPHmWSk=; h=Date:From:Subject:To:In-Reply-To:References; b=DLR/CxvEOq52ypJmb8FSyVtoWOS/uFr1zkVgg0GA7Tj5vX6Gb19BHA4C7tqHTgjt7 T5tFxYUwaRWjm4U6MyhNnzDApnINHB08JsOWQP4moTkXAyiEgTnkbxR+dBMWy6mKeg ENZA00YuE9IBDzuLqVwUM4d+bkJPzNyjuEvkzPp6cY1wc3sBmvJyHvLTHP+sWMjgZ1 p8n1Y2hM5NDtRjR0v3gAoEkTdKNa/lG5J+6lP53tJFblpGWFEIsRtxICeq7uVAmLqH E0u1bWCMgAtsm0K79KyTcxCsL0sh1ijQzLdYjNGaEkBpMeyNtjHIFzUMvXvA2F5avn zGznKJyg0GBuw== Received: from webmail.home.roberte.eu (localhost [127.0.0.1]) (authenticated bits=0) by postit (8.17.1/8.15.2) with ESMTPSA id 31QGEhsL065997 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NOT) for ; Sun, 26 Feb 2023 17:14:43 +0100 (CET) (envelope-from rol@robert-eckardt.de) X-Authentication-Warning: gluon.home.roberte.eu: Host localhost [127.0.0.1] claimed to be webmail.home.roberte.eu List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Date: Sun, 26 Feb 2023 16:14:43 +0000 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-Mailer: RainLoop/1.16.0 From: "Robert Eckardt" Message-ID: <702b7e2155d9ae3c626d84db7dce7856@robert-eckardt.de> Subject: Re: (268963) Security patches for xorg-server-21.1.4_1,1 To: questions@freebsd.org In-Reply-To: References: <536b404411ef399b151b84b46a74dd31@robert-eckardt.de> <667f6be1-62d9-6f1e-c5fd-13e3385622b2@freebsd.org> X-Virus-Scanned: clamav-milter 0.103.7 at serv15.avernis.de X-Virus-Status: Clean X-Spamd-Result: default: False [-3.50 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-0.996]; R_SPF_ALLOW(-0.20)[+mx]; R_DKIM_ALLOW(-0.20)[robert-eckardt.de:s=mail]; MIME_GOOD(-0.10)[text/plain]; MLMMJ_DEST(0.00)[questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; DKIM_TRACE(0.00)[robert-eckardt.de:+]; ASN(0.00)[asn:24940, ipnet:2a01:4f8::/32, country:DE]; MIME_TRACE(0.00)[0:+]; DMARC_NA(0.00)[robert-eckardt.de]; RCPT_COUNT_ONE(0.00)[1]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; ARC_NA(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_ALL(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; TO_DN_NONE(0.00)[]; HAS_XAW(0.00)[]; MID_RHS_MATCH_FROM(0.00)[] X-Rspamd-Queue-Id: 4PPpcf6MYMz3rbK X-Spamd-Bar: --- X-ThisMailContainsUnwantedMimeParts: N Hi folks, thanks a lot. For the records: Eventually, I downloaded xorg-server-21.1.7 (fetch https://xorg.freedeskt= op.org/releases/individual/xserver/xorg-server-21.1.7.tar.xz) and changed= Makefile and distinfo of the 21.1.4 port accordingly. I checked only for FLAVOR=3Dxvfb, although it also builds xorg-server wit= hout errors when you forget the FLAVOR. And luckily the port built and reinstalled xorg-vfbserver without problem= s. diff -rC2 xorg-server-21.1.4/Makefile xorg-server/Makefile *** xorg-server-21.1.4/Makefile Sun Feb 26 11:34:01 2023 --- xorg-server/Makefile Sun Feb 26 11:36:49 2023 *************** *** 1,4 **** PORTNAME=3D xorg ! PORTVERSION=3D 21.1.4 PORTREVISION=3D 1 PORTEPOCH=3D 1 --- 1,4 ---- PORTNAME=3D xorg ! PORTVERSION=3D 21.1.7 PORTREVISION=3D 1 PORTEPOCH=3D 1 diff -rC2 xorg-server-21.1.4/distinfo xorg-server/distinfo *** xorg-server-21.1.4/distinfo Wed Jun 29 15:44:41 2022 --- xorg-server/distinfo Sun Feb 26 11:38:12 2023 *************** *** 1,3 **** TIMESTAMP =3D 1659367891 ! SHA256 (xorg-server-21.1.4.tar.xz) =3D 5cc4be8ee47edb58d4a90e603a59d56b= 40291ad38371b0bd2471fc3cbee1c587 ! SIZE (xorg-server-21.1.4.tar.xz) =3D 4940176 --- 1,3 ---- TIMESTAMP =3D 1659367891 ! SHA256 (xorg-server-21.1.7.tar.xz) =3D d9c60b2dd0ec52326ca6ab20db0e490b= 1ff4f566f59ca742d6532e92795877bb ! SIZE (xorg-server-21.1.7.tar.xz) =3D 4933292 26. Februar 2023 04:28, "Greg Veldman" schrieb: > On Sat, Feb 25, 2023 at 06:15:03PM +0000, Graham Perrin wrote: >=20 >>=20On 25/02/2023 14:13, Robert Eckardt wrote: >>=20 >>=20Hi all, >>=20 >>=20does someone know, when an update for xorg-server-21.1.4_1,1 will be >> available? ??? >>=20 >>=20I can't guess when a commit will be made. >>=20 >>=20In the meantime, please know that the Ports Security Team is aware o= f >> the security aspect. >>=20 >>=20 >=20 >=20If it helps at all, I've been running xorg-server 21.1.7 built > from the patch in that PR for over a week on my desktop machine > with no issues. FreeBSD 12.3 amd64, built on the same machine > I'm running it on. >=20 >=20If you're willing to take my word that I didn't do anything > nefarious to it, I've also put up a binary package of that > build that anyone is free to use. >=20 >=20https://www.gregv.net/xorg-server-21.1.7,1.pkg >=20 >=20SHA256 sum: > 353311aabccc9379af4d90e8ff445f8ba7444078cf8bb7bf4ea2f43b04351187 > xorg-server-21.1.7,1.pkg >=20 >=20-- > Greg Veldman > freebsd@gregv.net