NetBSD Problem Report #39611
From gcw@primenet.com.au Tue Sep 23 00:51:16 2008
Return-Path: <gcw@primenet.com.au>
Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11])
by narn.NetBSD.org (Postfix) with ESMTP id 9FD3963BC83
for <gnats-bugs@gnats.NetBSD.org>; Tue, 23 Sep 2008 00:51:16 +0000 (UTC)
Message-Id: <20080923005111.9578.qmail@g.primenet.com.au>
Date: 23 Sep 2008 10:51:11 +1000
From: gcw@primenet.com.au
Reply-To: gcw@primenet.com.au
To: gnats-bugs@gnats.NetBSD.org
Subject: Xorg installed with setuid improperly
X-Send-Pr-Version: 3.95
>Number: 39611
>Category: bin
>Synopsis: Xorg installed with setuid improperly
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: bin-bug-people
>State: open
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Tue Sep 23 00:55:00 +0000 2008
>Originator: Geoff C. Wing
>Release: NetBSD 4.99.72
>Organization:
>Environment:
System: NetBSD g.primenet.com.au 4.99.72 NetBSD 4.99.72 (G) #0: Mon Sep 22 12:16:10 EST 2008 gcw@g.primenet.com.au:/usr/netbsd/src/sys/arch/i386/compile/G i386
Architecture: i386
Machine: i386
>Description:
The makefile to install the xorg-server (file: Xorg) sets BINMODE
to install it setuid but doesn't set BINOWN. This means that Xorg
may potentially be installed setuid as the wrong user.
Outside the src/x11 hierarchy everything setting BINMODE properly
sets BINOWN.
Here are the src/x11 ones (if anyone will be using them in the future):
x11/Xserver/Xserver/X68k/Makefile
x11/Xserver/Xserver/XFree86/Makefile
x11/Xserver/Xserver/XalphaNetBSD/Makefile
x11/Xserver/Xserver/Xarm32VIDC/Makefile
x11/Xserver/Xserver/Xdreamcast/Makefile
x11/Xserver/Xserver/Xews4800mips/Makefile
x11/Xserver/Xserver/Xhpc/Makefile
x11/Xserver/Xserver/Xmac68k/Makefile
x11/Xserver/Xserver/Xmacppc/Makefile
x11/Xserver/Xserver/Xnewsmips/Makefile
x11/Xserver/Xserver/Xsun/Makefile
x11/Xserver/Xserver/Xsun24/Makefile
x11/Xserver/Xserver/XsunMono/Makefile
>How-To-Repeat:
Obvious
>Fix:
Index: external/mit/xorg/server/xorg-server/hw/xfree86/Makefile
===================================================================
RCS file: /cvsroot/src/external/mit/xorg/server/xorg-server/hw/xfree86/Makefile,v
retrieving revision 1.21
diff -u -r1.21 Makefile
--- external/mit/xorg/server/xorg-server/hw/xfree86/Makefile 1 Sep 2008 10:15:08 -0000 1.21
+++ external/mit/xorg/server/xorg-server/hw/xfree86/Makefile 23 Sep 2008 00:44:27 -0000
@@ -12,6 +12,7 @@
.include "../../Makefile.Xserver"
PROG= Xorg
+BINOWN= root
BINMODE= 4711
.PATH: ${X11SRCDIR.xorg-server}/hw/xfree86
(Contact us)
$NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2007
The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.
Home