andreacavalli/xserver-multidpi
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
b45c74f0f2
xserver-multidpi/hw
History
Matthieu Herrb 50c0cf885a Disable -logfile and -modulepath when running with elevated privileges 
Could cause privilege elevation and/or arbitrary files overwrite, when
the X server is running with elevated privileges (ie when Xorg is
installed with the setuid bit set and started by a non-root user).

CVE-2018-14665

Issue reported by Narendra Shinde and Red Hat.

Signed-off-by: Matthieu Herrb <matthieu@herrb.eu>
Reviewed-by: Alan Coopersmith <alan.coopersmith@oracle.com>
Reviewed-by: Peter Hutterer <peter.hutterer@who-t.net>
Reviewed-by: Adam Jackson <ajax@redhat.com>
2018-10-25 09:17:05 -04:00
..
dmx dix: Remove LegalModifier() 2018-09-28 16:25:17 -04:00
kdrive dix: Remove LegalModifier() 2018-09-28 16:25:17 -04:00
vfb dix: Remove LegalModifier() 2018-09-28 16:25:17 -04:00
xfree86 Disable -logfile and -modulepath when running with elevated privileges 2018-10-25 09:17:05 -04:00
xnest dix: Remove LegalModifier() 2018-09-28 16:25:17 -04:00
xquartz dix: Remove LegalModifier() 2018-09-28 16:25:17 -04:00
xwayland xwayland: Plug leaks in xwl_present_sync_callback 2018-10-24 09:53:36 +00:00
xwin dix: Remove LegalModifier() 2018-09-28 16:25:17 -04:00
Makefile.am Xwayland DDX 2014-04-03 15:19:22 -07:00
meson.build meson: Move Xvfb build under an option. 2017-09-20 13:19:21 -04:00