xwayland: Enable access control on open sockets [CVE-2015-3164 1/3]
Xwayland currently allows wide-open access to the X sockets it listens on, ignoring Xauth access control. This commit makes sure to enable access control on the sockets, so one user can't snoop on another user's X-over-wayland applications. Signed-off-by: Ray Strode <rstrode@redhat.com> Reviewed-by: Daniel Stone <daniels@collabora.com> Reviewed-by: Alan Coopersmith <alan.coopersmith@oracle.com> Signed-off-by: Keith Packard <keithp@keithp.com>
This commit is contained in:
parent
ad02d0df75
commit
c4534a38b6
|
@ -483,7 +483,7 @@ listen_on_fds(struct xwl_screen *xwl_screen)
|
||||||
int i;
|
int i;
|
||||||
|
|
||||||
for (i = 0; i < xwl_screen->listen_fd_count; i++)
|
for (i = 0; i < xwl_screen->listen_fd_count; i++)
|
||||||
ListenOnOpenFD(xwl_screen->listen_fds[i], TRUE);
|
ListenOnOpenFD(xwl_screen->listen_fds[i], FALSE);
|
||||||
}
|
}
|
||||||
|
|
||||||
static void
|
static void
|
||||||
|
|
Loading…
Reference in New Issue
Block a user