rxvt/patches/rxvt-2.7.10-CVE-2008-1142.patch

# CVE-2008-1142 (rxvt 2.6.4 opens an xterm on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections.)
# Based on http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=41;filename=diff;att=1;bug=469296
# bug 217819

diff -Naur rxvt-2.7.10.orig/rclock/rclock.c rxvt-2.7.10/rclock/rclock.c
--- rxvt-2.7.10.orig/rclock/rclock.c	2008-05-03 14:23:07.264082222 +0200
+++ rxvt-2.7.10/rclock/rclock.c	2008-05-03 14:24:55.433082735 +0200
@@ -324,9 +324,6 @@
        CheckMaildir();
 #endif
 
-   if ((display_name = getenv ("DISPLAY")) == NULL)
-     display_name = ":0";
-
    /* parse the command line */
    for (i = 1; i < argc; i += 2)
      {
@@ -424,7 +421,9 @@
    Xdisplay = XOpenDisplay (display_name);
    if (!Xdisplay)
      {
-	print_error ("can't open display %s", display_name);
+	print_error ("can't open display %s", display_name?display_name:
+			getenv("DISPLAY")?getenv("DISPLAY"):
+			"as no -d given and DISPLAY not set");
 	goto Abort;
      }
 
diff -Naur rxvt-2.7.10.orig/src/init.c rxvt-2.7.10/src/init.c
--- rxvt-2.7.10.orig/src/init.c	2008-05-03 14:23:07.247082766 +0200
+++ rxvt-2.7.10/src/init.c	2008-05-03 14:43:44.705227631 +0200
@@ -532,8 +532,7 @@
 /*
  * Open display, get options/resources and create the window
  */
-    if ((rs[Rs_display_name] = getenv("DISPLAY")) == NULL)
-	rs[Rs_display_name] = ":0";
+    rs[Rs_display_name] = getenv("DISPLAY");
 
     rxvt_get_options(r, r_argc, r_argv);
     free(r_argv);
@@ -550,7 +549,9 @@
 
     if (r->Xdisplay == NULL
 	&& (r->Xdisplay = XOpenDisplay(rs[Rs_display_name])) == NULL) {
-	rxvt_print_error("can't open display %s", rs[Rs_display_name]);
+	rxvt_print_error("can't open display %s",
+			rs[Rs_display_name]?rs[Rs_display_name]:
+			"as no -display option given and DISPLAY not set");
 	exit(EXIT_FAILURE);
     }
 
1	niro	634	# CVE-2008-1142 (rxvt 2.6.4 opens an xterm on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections.)
2			# Based on http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=41;filename=diff;att=1;bug=469296
3			# bug 217819
4
5			diff -Naur rxvt-2.7.10.orig/rclock/rclock.c rxvt-2.7.10/rclock/rclock.c
6			--- rxvt-2.7.10.orig/rclock/rclock.c 2008-05-03 14:23:07.264082222 +0200
7			+++ rxvt-2.7.10/rclock/rclock.c 2008-05-03 14:24:55.433082735 +0200
8			@@ -324,9 +324,6 @@
9			CheckMaildir();
10			#endif
11
12			- if ((display_name = getenv ("DISPLAY")) == NULL)
13			- display_name = ":0";
14			-
15			/* parse the command line */
16			for (i = 1; i < argc; i += 2)
17			{
18			@@ -424,7 +421,9 @@
19			Xdisplay = XOpenDisplay (display_name);
20			if (!Xdisplay)
21			{
22			- print_error ("can't open display %s", display_name);
23			+ print_error ("can't open display %s", display_name?display_name:
24			+ getenv("DISPLAY")?getenv("DISPLAY"):
25			+ "as no -d given and DISPLAY not set");
26			goto Abort;
27			}
28
29			diff -Naur rxvt-2.7.10.orig/src/init.c rxvt-2.7.10/src/init.c
30			--- rxvt-2.7.10.orig/src/init.c 2008-05-03 14:23:07.247082766 +0200
31			+++ rxvt-2.7.10/src/init.c 2008-05-03 14:43:44.705227631 +0200
32			@@ -532,8 +532,7 @@
33			/*
34			* Open display, get options/resources and create the window
35			*/
36			- if ((rs[Rs_display_name] = getenv("DISPLAY")) == NULL)
37			- rs[Rs_display_name] = ":0";
38			+ rs[Rs_display_name] = getenv("DISPLAY");
39
40			rxvt_get_options(r, r_argc, r_argv);
41			free(r_argv);
42			@@ -550,7 +549,9 @@
43
44			if (r->Xdisplay == NULL
45			&& (r->Xdisplay = XOpenDisplay(rs[Rs_display_name])) == NULL) {
46			- rxvt_print_error("can't open display %s", rs[Rs_display_name]);
47			+ rxvt_print_error("can't open display %s",
48			+ rs[Rs_display_name]?rs[Rs_display_name]:
49			+ "as no -display option given and DISPLAY not set");
50			exit(EXIT_FAILURE);
51			}
52