SOURCES: x11r6.9.0-geteuid.diff (NEW) - fixes CVE-2006-0745 (argh)
qboosh
qboosh at pld-linux.org
Mon Mar 20 23:17:02 CET 2006
Author: qboosh Date: Mon Mar 20 22:17:02 2006 GMT
Module: SOURCES Tag: HEAD
---- Log message:
- fixes CVE-2006-0745 (argh)
---- Files affected:
SOURCES:
x11r6.9.0-geteuid.diff (NONE -> 1.1) (NEW)
---- Diffs:
================================================================
Index: SOURCES/x11r6.9.0-geteuid.diff
diff -u /dev/null SOURCES/x11r6.9.0-geteuid.diff:1.1
--- /dev/null Mon Mar 20 23:17:02 2006
+++ SOURCES/x11r6.9.0-geteuid.diff Mon Mar 20 23:16:57 2006
@@ -0,0 +1,20 @@
+--- programs/Xserver/hw/xfree86/common/xf86Init.c.orig 2006-03-17 23:30:10.000000000 +0200
++++ programs/Xserver/hw/xfree86/common/xf86Init.c 2006-03-17 23:29:35.000000000 +0200
+@@ -1376,7 +1376,7 @@
+ }
+
+ /* First the options that are only allowed for root */
+- if (getuid() == 0 || geteuid != 0)
++ if (getuid() == 0 || geteuid() != 0)
+ {
+ if (!strcmp(argv[i], "-modulepath"))
+ {
+@@ -1679,7 +1679,7 @@
+ }
+ if (!strcmp(argv[i], "-configure"))
+ {
+- if (getuid() != 0 && geteuid == 0) {
++ if (getuid() != 0 && geteuid() == 0) {
+ ErrorF("The '-configure' option can only be used by root.\n");
+ exit(1);
+ }
================================================================
More information about the pld-cvs-commit
mailing list