Skip to content
Snippets Groups Projects
Commit 8a59e3b7 authored by Matthieu Herrb's avatar Matthieu Herrb Committed by Adam Jackson
Browse files

Disable -logfile and -modulepath when running with elevated privileges 


Could cause privilege elevation and/or arbitrary files overwrite, when
the X server is running with elevated privileges (ie when Xorg is
installed with the setuid bit set and started by a non-root user).

CVE-2018-14665

Issue reported by Narendra Shinde and Red Hat.

Signed-off-by: default avatarMatthieu Herrb <matthieu@herrb.eu>
Reviewed-by: default avatarAlan Coopersmith <alan.coopersmith@oracle.com>
Reviewed-by: default avatarPeter Hutterer <peter.hutterer@who-t.net>
Reviewed-by: Adam Jackson's avatarAdam Jackson <ajax@redhat.com>
(cherry picked from commit 50c0cf88)
parent cfc3dec0
3 merge requests!566Draft: modesetting: apply transforms in PRIME shared pixmap updates,!68Silence compile warning with debug flag in present,!57CVE-2018-14665 for 1.20 branch (1.20.3)
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment