[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[Git][xorg-team/wayland/xwayland][debian-unstable] Add README.Debian.security

Title: GitLab

Timo Aaltonen pushed to branch debian-unstable at X Strike Force / wayland / xwayland

Commits:

  • 84145e01
    by Timo Aaltonen at 2025-02-28T12:41:45+02:00 
    Add README.Debian.security

to clarify how the security issues are inherited from the shared codebase with xorg-server, and don't
actually apply to xwayland.

2 changed files:

Changes:

  • debian/README.Debian.security
    1 
    +xwayland bundles many components from xorg-server. xorg-server is often affected
    2 
    +by security issues due to it's very old legacy codebase and the fact that the
    3 
    +X server runs under the root user.
    4 
    +
    5 
    +With xwayland the X server running on top of Wayland runs with the
    6 
    +permissions of the current user (which neutralises such security problems).
    7 
    +xorg-server security vulnerabilities in the embedded xorg-server code are
    8 
    +not tracked or updated in Debian (other than xwayland being updated to newer
    9 
    +copies of xorg-server via new upstream releases).

  • debian/changelog
    1 
    +xwayland (2:24.1.6-2) UNRELEASED; urgency=medium
    2 
    +
    3 
    +  * Add README.Debian.security to clarify how the security issues are
    4 
    +    inherited from the shared codebase with xorg-server, and don't
    5 
    +    actually apply to xwayland. Thanks, Moritz Muehlenhoff!
    6 
    +
    7 
    + -- Timo Aaltonen <tjaalton@debian.org>  Fri, 28 Feb 2025 12:40:26 +0200
    8 
    +
    1 9 
     xwayland (2:24.1.6-1) unstable; urgency=medium
    2 10
    3 11 
       * New upstream release. Fixes:


    • View it on GitLab.
    You're receiving this email because of your account on salsa.debian.org. Manage all notifications · Help

    Reply to: