pkgsrc-changes: CVS commit: pkgsrc/x11

Subject: CVS commit: pkgsrc/x11
To: None <pkgsrc-changes@NetBSD.org>
From: Joerg Sonnenberger <joerg@netbsd.org>
List: pkgsrc-changes
Date: 03/20/2006 21:34:59

Module Name:	pkgsrc
Committed By:	joerg
Date:		Mon Mar 20 21:34:59 UTC 2006

Modified Files:
	pkgsrc/x11/xorg-libs: distinfo
	pkgsrc/x11/xorg-server: Makefile
Added Files:
	pkgsrc/x11/xorg-libs/patches: patch-bm

Log Message:
Fix CVE-2006-0745: Comparing the address of geteuid and 0 to detect
whether the server was started by non-root is not likely to ever work.
This could allow a local user to override system files or run arbitrary
code.  Patch from the original advisory. Bump revision of xorg-server.


To generate a diff of this commit:
cvs rdiff -r1.37 -r1.38 pkgsrc/x11/xorg-libs/distinfo
cvs rdiff -r0 -r1.3 pkgsrc/x11/xorg-libs/patches/patch-bm
cvs rdiff -r1.39 -r1.40 pkgsrc/x11/xorg-server/Makefile

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.