diff options
author | Peter Veenstra <qbix79@users.sourceforge.net> | 2019-06-26 18:25:48 +0300 |
---|---|---|
committer | Peter Veenstra <qbix79@users.sourceforge.net> | 2019-06-26 18:25:48 +0300 |
commit | e164e788f9819d5ab898d705f863e2046baf8b03 (patch) | |
tree | 4dc476bd4a2b752e35e80332018b6d40be6c51a7 | |
parent | 8d936124dfba077082049d8321a3680991e507a1 (diff) |
0_74_3: seconds set of administrative changessvn/RELEASE_0_74_3svn/0_74_3
Imported-from: https://svn.code.sf.net/p/dosbox/code-0/dosbox/branches/0_74_3@4249
-rw-r--r-- | ChangeLog | 15 | ||||
-rw-r--r-- | NEWS | 14 | ||||
-rw-r--r-- | src/gui/sdlmain.cpp | 4 |
3 files changed, 27 insertions, 6 deletions
@@ -1,6 +1,7 @@ 0.74-3 - Implement basic file access control for files available from within - the emulation. + the emulation, so that programs running inside DOSBox can't access + /proc (e.g. /proc/self/mem). (CVE-2019-12594) - Unify unmounting code and add some protections against out of bound access when DOS_DRIVES is not 26. - Use correct type for return value of strlen. @@ -8,24 +9,26 @@ - Fix unitialized access to some isoDrive fields and improve stability when switching CD images. - Small fix to hq3x. - - Fix 256 colour mode encoding in zmbv.dll + - Fix 256 colour mode encoding in zmbv.dll. - Some small aliassing fix. - Change SET to check the size of the MCB when adding variables. Fixes hangs with Norton Commander. - Check buffer length before doing tab completion. - - Correct buffer overflow with very long lines in bat files. + - Correct buffer overflow with very long lines in bat files. (CVE-2019-7165) - Correct the boundary check for the internal programs array. - Increase stability in max cycles mode by increasing the lower bound. - Fix command prompt in windows 3.11 with dynrec core. - - Fix win64 dynrec core. + - Fix Win64 dynrec core. - Always clear buffers before drawing in OpenGL mode. Fixes artifacts with drivers that have more than 2 buffers and overlays. - Fix red border that appeared when scaling the image in OpenGL - mode with nvidia on Linux and Mac. - - Add workaround for the mouse unlocking problem with X.org 1.20.1 + mode with Nvidia on Linux and Mac. + - Change default output to opengl on Mac, as surface is very slow there in 64 bit. + - Add workaround for the mouse unlocking problem with X.org 1.20.1. - Fix table access when USE_FULL_TLB is undefined (non-default configuration). - Several fixes to prevent compilation errors. - Update Visual studio file to fix missing files from 0.74-2. + 0.74-2 - Rewrite auto/max cycles algorithm to work better with windows 7, other OSes might benefit as well. @@ -1,3 +1,17 @@ +0.74-3 +A security release for DOSBox 0.74: +- Fixed that a very long line inside a bat file would overflow the parsing + buffer (CVE-2019-7165 by Alexandre Bartel) +- Added a basic permission system so that a program running inside DOSBox + can't access the contents of /proc (e.g. /proc/self/mem) when / or /proc + were (to be) mounted (CVE-2019-12594 by Alexandre Bartel) +- Several other fixes for out of bounds access and buffer overflows. +- Some fixes to the OpenGL rendering. + +It's recommended to use config -securemode when dealing with untrusted +files. +See the Changelog for all the changes. + 0.74-2 A maintenance release for DOSBox 0.74, which solves the following problems: diff --git a/src/gui/sdlmain.cpp b/src/gui/sdlmain.cpp index 40efd6bc9..0704c9b2e 100644 --- a/src/gui/sdlmain.cpp +++ b/src/gui/sdlmain.cpp @@ -1659,7 +1659,11 @@ void Config_Add_SDL() { "ddraw", #endif 0 }; +#if C_OPENGL && defined(MACOSX) + Pstring = sdl_sec->Add_string("output",Property::Changeable::Always,"opengl"); +#else Pstring = sdl_sec->Add_string("output",Property::Changeable::Always,"surface"); +#endif Pstring->Set_help("What video system to use for output."); Pstring->Set_values(outputs); |