Hardening
a2aa56ee28
Merge pull request #3067 from akallabeth/reset_abort_event
...
Resetting abort event on freerdp_connect.
2016-01-28 14:28:51 +01:00
Armin Novak
035f127081
Added get_build_config functions.
2016-01-28 14:26:50 +01:00
Armin Novak
d847993a0c
Using Stream_ReminingLength for read checks.
2016-01-28 12:30:10 +01:00
Armin Novak
c2515340c3
Fixed return value of WLog_FileAppender_WriteImageMessage
2016-01-28 12:08:57 +01:00
Armin Novak
6f50589c05
Cleared up error code usage.
2016-01-28 12:05:14 +01:00
Armin Novak
8595e395ab
Fixed size checks (thanks to @virtman)
2016-01-28 11:45:06 +01:00
Armin Novak
57f1e26f36
Checking capability read return.
...
Updated copyright headers.
2016-01-28 11:14:29 +01:00
Martin Fleisz
7294a7f27d
Merge pull request #3078 from akallabeth/wlog_cmd_options
...
Added new command line options for logger.
2016-01-28 10:33:17 +01:00
Martin Fleisz
81f5060aae
Merge pull request #3088 from clangm/patch-1
...
fix typo
2016-01-28 10:32:14 +01:00
clangm
62a559ad03
fix typo
...
Pretty sure that's supposed to be __MACOSX__, not __MAXOSX__
2016-01-27 15:40:08 -07:00
Hardening
bb4a0c5255
Merge pull request #3087 from DavBfr/fix-png-load
...
Fix png image loading that needed write access
2016-01-27 23:02:11 +01:00
David PHAM-VAN
3d22cbe2b8
Fix png image loading that needed write access
2016-01-27 11:02:16 -08:00
Armin Novak
e08ca73ddc
Improved error checks.
2016-01-27 19:26:52 +01:00
Armin Novak
06adbc971a
Fixed realloc check, renamed filter variable.
2016-01-27 11:21:04 +01:00
Hardening
d458bc2e06
Merge pull request #3073 from davewheel/cert_key_in_memory
...
Allow to specify the raw content of crypto materials
2016-01-27 10:50:38 +01:00
Hardening
7af1ec85f0
Merge pull request #3083 from akallabeth/capability_set_fix
...
Fix #3081 , set client string encoding.
2016-01-27 10:45:54 +01:00
Armin Novak
974d2ef433
Fix #3081 , client string encoding.
2016-01-27 10:34:01 +01:00
Martin Fleisz
a9e4ba0118
Merge pull request #3069 from davewheel/4upstream-1
...
Improve monitor support
2016-01-27 10:18:30 +01:00
Martin Fleisz
b2744f8429
Merge pull request #3082 from hardening/check_client_and_server_capabilities
...
Check server and client capabilities
2016-01-27 10:13:32 +01:00
David FORT
708d0cb3c0
Check server and client capabilities
...
Most of the capabilities are sent by both the client and the server. But for some
the specs specify that they are only supposed to be only send by the server or the client.
This patch ensures this. Without this patch a malicious client can change server settings
and a malicious server can modify client settings.
2016-01-26 16:14:48 +01:00
Martin Fleisz
b6ad8052c1
Merge pull request #3080 from hardening/capa_write
...
Stream_EnsureCapacity return value aren't checked in capabilities_write
2016-01-26 09:56:01 +01:00
Armin Novak
106479d6f2
Fixed clientNameLen initialization.
2016-01-26 09:34:22 +01:00
David FORT
137825ed9f
Stream_EnsureCapacity return value aren't checked in capabilities_write
2016-01-25 19:11:35 +01:00
Armin Novak
deffd0d781
Fixed argument checks for drive channel.
2016-01-24 15:21:06 +01:00
Armin Novak
46a079fcb6
Added new command line options for logger.
...
The new command line options /log-level:<level> and
/log-filters:<filter>:<level> allow setting default log
level and log module filter to be set.
2016-01-23 15:16:13 +01:00
Hardening
507fba0252
Merge pull request #3072 from giox069/master
...
Improve error logging after calling some BIO_ functions
2016-01-23 14:42:20 +01:00
Giovanni Panozzo
c5a4ce7893
Improve error logging after calling some BIO_ functions
2016-01-23 11:39:38 +01:00
Hardening
bbf5c7795d
Merge pull request #3070 from davewheel/ntlm_attrs
...
Handle more NTLM attributes
2016-01-23 00:00:18 +01:00
Bernhard Miklautz
ef6cb2bed9
Merge pull request #3075 from akallabeth/winpr_header_install_fix
...
Added cmake patch from @david-geiger
2016-01-21 21:29:42 +01:00
Armin Novak
73ec3d6aca
Removed fixed size strings.
2016-01-21 15:45:21 +01:00
Armin Novak
78d3f45601
Added cmake patch from @david-geiger
2016-01-21 15:30:55 +01:00
davewheel
d5b8585a39
Allow to specify the raw content of crypto materials
...
Sometime it's possible that your server application doesn't have access to files
(when running in a very restricted environment for example). This patch allows
to ship the private key and certificate as a string.
Sponsored by: Wheel Systems (http://www.wheelsystems.com )
2016-01-21 11:27:06 +01:00
davewheel
a971f9e4bc
Handle more NTLM attributes
...
This patch adds the management of more NTLM attributes.
Sponsored by: Wheel Systems (http://www.wheelsystems.com )
2016-01-20 22:21:05 +01:00
davewheel
121a234866
Add better handling of monitors
...
This patch makes FreeRDP announce the support for monitor layout PDU. It also
adds support for servers to announce the monitors layout.
2016-01-20 16:56:04 +01:00
davewheel
ca9e908f3c
Fix a security issue in monitors packet handling
...
The number of announced monitors was not checked, so if a client was announcing
a big number, it could override other fields in settings and more...
2016-01-20 16:56:04 +01:00
Martin Fleisz
3e19791bb7
Merge pull request #3014 from bmiklautz/winpr_nt_file
...
winpr: create a specific winpr nt file handle
2016-01-19 09:28:40 +01:00
Martin Fleisz
07d5d1615b
Merge pull request #3059 from akallabeth/zlib_memleak_fix
...
Fix memory leak in lodepng_zlib_compress
2016-01-19 09:27:50 +01:00
Martin Fleisz
059286da1f
Merge pull request #3066 from akallabeth/srccopy_fix
...
Fixed SRCCOPY, using memmove now.
2016-01-19 09:25:42 +01:00
Martin Fleisz
90783c7f8a
Merge pull request #3068 from akallabeth/pkg_config_fix
...
Fix pkg-config generation.
2016-01-19 09:24:22 +01:00
Armin Novak
20ada7d347
Fix pkg-config generation.
2016-01-18 22:46:29 +01:00
Armin Novak
5542fef75d
Resetting abort event on freerdp_connect.
2016-01-18 10:08:12 +01:00
Armin Novak
93f3c060d2
Fixed memory overlap check.
2016-01-18 09:32:34 +01:00
Armin Novak
123cd523e0
Fixed SRCCOPY, using memmove now.
...
memcpy is not defined, if source and destination overlap.
2016-01-18 09:18:42 +01:00
akallabeth
e2dbe5ee2d
Merge pull request #3062 from bmiklautz/build_fix
...
build: fix a problem with cmake version 2.8.11
2016-01-15 16:32:54 +01:00
Bernhard Miklautz
ede0da3280
build: fix a problem with cmake version 2.8.11
...
Starting with cmake 2.8.10 FreeRDP exports a cmake find module. With 2.8.12
the PRIVATE/PUBLIC keywords were introduced in cmake. When building with
2.8.11 it is not possible to mark link dependencies as private and
therefore they need to be exported.
2016-01-15 13:32:25 +01:00
Armin Novak
d2ab27626a
Fix memory leak in lodepng_zlib_compress
2016-01-15 10:16:08 +01:00
Martin Fleisz
2db8c7e107
Merge pull request #3052 from abma/fix3051
...
fix #3051 : fullscreen switching with CTRL+ALT+ENTER doesn't work any …
2016-01-15 09:51:51 +01:00
Martin Fleisz
87c0913aff
Merge pull request #3054 from akallabeth/leak_fixes_v2
...
Leak fixes
2016-01-15 09:51:07 +01:00
Armin Novak
9b160d4570
Fixed uninitialized value.
2016-01-15 09:33:21 +01:00
Armin Novak
aa90673008
Fixed memory leak on cleanup.
2016-01-15 09:33:21 +01:00