From 25a7aa1fcd35c2bcff32b4b88136c5d2fb0c2dafc949e4416899b0b1308872fd Mon Sep 17 00:00:00 2001
From: Stefan Dirsch <sndirsch@suse.com>
Date: Thu, 4 Apr 2024 08:26:50 +0000
Subject: [PATCH] - Security update 21.1.12   This release addresses the
 following 4 security issues:   * CVE-2024-31080   * CVE-2024-31081   *
 CVE-2024-31082   * CVE-2024-31083   Additionally it provides a way to disable
 byte-swapped clients either by   command line flag or config option. This
 allows to turn off byte swapping   code that has been a source of security
 problems lately.

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/xorg-x11-server?expand=0&rev=883
---
 xorg-server-21.1.11.tar.gz     |   3 ---
 xorg-server-21.1.11.tar.gz.sig | Bin 95 -> 0 bytes
 xorg-server-21.1.12.tar.xz     |   3 +++
 xorg-server-21.1.12.tar.xz.sig | Bin 0 -> 310 bytes
 xorg-x11-server.changes        |  13 +++++++++++
 xorg-x11-server.keyring        |  39 +++++++++++++++++++++++++++++++++
 xorg-x11-server.spec           |   6 ++---
 7 files changed, 58 insertions(+), 6 deletions(-)
 delete mode 100644 xorg-server-21.1.11.tar.gz
 delete mode 100644 xorg-server-21.1.11.tar.gz.sig
 create mode 100644 xorg-server-21.1.12.tar.xz
 create mode 100644 xorg-server-21.1.12.tar.xz.sig

diff --git a/xorg-server-21.1.11.tar.gz b/xorg-server-21.1.11.tar.gz
deleted file mode 100644
index a281588..0000000
--- a/xorg-server-21.1.11.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:1aa0ee1adad0b2db7f291f3823a4ab240c7f4aea710e89f5ef4aa232b6833403
-size 8988626
diff --git a/xorg-server-21.1.11.tar.gz.sig b/xorg-server-21.1.11.tar.gz.sig
deleted file mode 100644
index 535d10da4369b56a29b231b84271b7c373e275f2e1db1aaab5dcf9d30c27795c..0000000000000000000000000000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 95
zcmeB(WnmCxVvrS6WJ$l%_9@B!=wI)xO0gmZx%=e2T^(4NQkR9YGjMSVz(hJ{Gt3V+
vS@?a9Dc`3jdM4N9FP~Ya@A2XS!#pD+zJt}hX>!I(?Ef@A+_^HtVDk(BBE=;-

diff --git a/xorg-server-21.1.12.tar.xz b/xorg-server-21.1.12.tar.xz
new file mode 100644
index 0000000..eb3eaeb
--- /dev/null
+++ b/xorg-server-21.1.12.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1e016e2be1b5ccdd65eac3ea08e54bd13ce8f4f6c3fb32ad6fdac4e71729a90f
+size 4957972
diff --git a/xorg-server-21.1.12.tar.xz.sig b/xorg-server-21.1.12.tar.xz.sig
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..53e69560c9fe270dcbce4f3dcceee6a405f9d4bb1f78c6841917dc22d59dba3b
GIT binary patch
literal 310
zcmV-60m=S}0W$;u0SW*e79j-v00g3Lt^Px#!}3YS_pTrVbVV%%0%i@t_5cbA5XSee
zAOmzoEpy`s|9b1zJtR#<xWuVWn=>ysEI3y%c@Flo<`meya>w|M;k@!!RanTVZSu@%
zWOZfny+A8Xg~zwVLdyAv;F}GWf5k#cs)d0h1?)jrg=pPu7lq{OVr$|&nykW9N>Zv<
zmxZf)6q!iq$)p$)sDhN>!8j*us>`vOHruGaXSco#Q;TH+NuFQlv&}&08BMKYn>Wq}
zGh2vHJCWJ7#9dAog3BgdTZkys<Poq90a`wuB{sBZfr4D7dAMZx!tTtP7<=D@MVKB;
z3>hfNN?e%;ig!@{O1dhjM#Hg?N!c}M&FcT%xwoxRrR%kwGye$#QA<!m%_&-7eymul
ILAvCr9gx41#{d8T

literal 0
HcmV?d00001

diff --git a/xorg-x11-server.changes b/xorg-x11-server.changes
index bd9fb73..a6beb50 100644
--- a/xorg-x11-server.changes
+++ b/xorg-x11-server.changes
@@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Thu Apr  4 08:13:19 UTC 2024 - Stefan Dirsch <sndirsch@suse.com>
+
+- Security update 21.1.12
+  This release addresses the following 4 security issues:
+  * CVE-2024-31080
+  * CVE-2024-31081
+  * CVE-2024-31082
+  * CVE-2024-31083
+  Additionally it provides a way to disable byte-swapped clients either by
+  command line flag or config option. This allows to turn off byte swapping
+  code that has been a source of security problems lately.
+
 -------------------------------------------------------------------
 Mon Feb 26 12:16:26 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
 
diff --git a/xorg-x11-server.keyring b/xorg-x11-server.keyring
index f511049..6184134 100644
--- a/xorg-x11-server.keyring
+++ b/xorg-x11-server.keyring
@@ -202,3 +202,42 @@ BQkaVB2nAAoJEBRwbb4eS0VA5e0AoO/nFK4k4fsAgsLMs02kk3plifoAAJ4iK85P
 ugQAoOlJ2NPM8mRqRCA2ZKXPqz7TGm64AKCTLcYRDmqX4aZcgK4yRBbe8GXhDA==
 =rEW/
 -----END PGP PUBLIC KEY BLOCK-----
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+Comment: FD00 04A2 6EAD FE43 A4C3  F249 C6F7 AE20 0374 452D
+Comment: Povilas Kanapickas <povilas@radix.lt>
+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+=h52C
+-----END PGP PUBLIC KEY BLOCK-----
diff --git a/xorg-x11-server.spec b/xorg-x11-server.spec
index c303813..59118c7 100644
--- a/xorg-x11-server.spec
+++ b/xorg-x11-server.spec
@@ -36,14 +36,14 @@
 %endif
 
 Name:           xorg-x11-server
-Version:        21.1.11
+Version:        21.1.12
 Release:        0
 URL:            http://xorg.freedesktop.org/
 Summary:        X
 License:        MIT
 Group:          System/X11/Servers/XF86_4
-Source0:        https://xorg.freedesktop.org/archive/individual/xserver/xorg-server-%{version}.tar.gz
-Source10:       https://xorg.freedesktop.org/archive/individual/xserver/xorg-server-%{version}.tar.gz.sig
+Source0:        https://xorg.freedesktop.org/archive/individual/xserver/xorg-server-%{version}.tar.xz
+Source10:       https://xorg.freedesktop.org/archive/individual/xserver/xorg-server-%{version}.tar.xz.sig
 Source11:       xorg-x11-server.keyring
 Source1:        sysconfig.displaymanager.template
 Source2:        README.updates