[X2Go-Commits] [x2goclient] 01/04: Update bundled VcXsrv from 1.15.2.4-xp+vc2013+x2go1 to 1.15.2.5
git-admin at x2go.org
git-admin at x2go.org
Sun Mar 29 21:51:13 CEST 2015
This is an automated email from the git hooks/post-receive script.
x2go pushed a commit to branch release/4.0.3.2-mswin
in repository x2goclient.
commit 8b65bb0cd2065ace2d85a531fbe7505696c846fa
Author: Mike DePaulo <mikedep333 at gmail.com>
Date: Sun Mar 29 11:58:15 2015 -0400
Update bundled VcXsrv from 1.15.2.4-xp+vc2013+x2go1 to 1.15.2.5
Conflicts:
debian/changelog
---
copy-deps-win32.bat | 2 +-
debian/changelog | 17 +++++++++++++++++
2 files changed, 18 insertions(+), 1 deletion(-)
diff --git a/copy-deps-win32.bat b/copy-deps-win32.bat
index 9c58739..a291a72 100755
--- a/copy-deps-win32.bat
+++ b/copy-deps-win32.bat
@@ -8,7 +8,7 @@ xcopy /E /Y D:\x2goclient-contrib\MinGW-DLLs\i686-4.8.2-release-posix-dwarf-r
xcopy /E /Y D:\x2goclient-contrib\MSVC-DLLs\2008-9.0.21022.8-x86 %1\
xcopy /E /Y D:\x2goclient-contrib\pulse\5.0-rev18_bin %1\
xcopy /E /Y D:\x2goclient-contrib\PuTTY\0.63_bin %1\
-xcopy /E /Y /I D:\x2goclient-contrib\VcXsrv\1.15.2.4-xp+vc2013+x2go1_bin %1\VcXsrv
+xcopy /E /Y /I D:\x2goclient-contrib\VcXsrv\1.15.2.5_bin %1\VcXsrv
xcopy /E /Y D:\x2goclient-contrib\zlib\1.2.8_bin\zlib1.dll %1\
xcopy /E /Y D:\x2goclient-contrib\zlib\x86-mingw4-1.2.7-1_bin\bin\libz.dll %1\
REM until Win32OpenSSL 1.0.1k comes out
diff --git a/debian/changelog b/debian/changelog
index a590c0c..9ef7533 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,20 @@
+x2goclient (4.0.3.2-20150329) unstable; urgency=medium
+
+ [ Mike DePaulo ]
+ * New upstream release (4.0.3.2-20150329):
+ - Windows: Update bundled VcXsrv from 1.15.2.2-xp+vc2013+x2go1 to
+ 1.15.2.5 (X2Go/Arctica Build)
+ The differences relevant to X2Go are:
+ + CVE-2015-0255 was fixed in VcXsrv itself
+ + VcXsrv's bundled version of openssl was updated from 1.0.1k
+ to 1.0.1m (fixes the multiple CVEs announced on 2015-03-19)
+ + VcXsrv's bundled version of libXfont was updated from 1.4.8
+ to 1.4.9 (Fixes CVE-2015-1802 through CVE-2015-1804)
+ + VcXsrv's bundled version of freetype was updated from 2.5.3
+ to 2.5.5 (fixes CVE-2014-9656 through CVE-2014-9675)
+
+ -- Mike DePaulo <mikedep333 at gmail.com> Sun, 29 Mar 2015 15:11:00 -0500
+
x2goclient (4.0.3.2-20150301) unstable; urgency=medium
[ Mike DePaulo ]
--
Alioth's /srv/git/code.x2go.org/x2goclient.git//..//_hooks_/post-receive-email on /srv/git/code.x2go.org/x2goclient.git
More information about the x2go-commits
mailing list