summaryrefslogtreecommitdiff
path: root/sysutils/screen
diff options
context:
space:
mode:
authorKris Kennaway <kris@FreeBSD.org>2001-09-04 19:20:42 +0000
committerKris Kennaway <kris@FreeBSD.org>2001-09-04 19:20:42 +0000
commitd9b67c242d93bd6d9da12d7d62ebb63ca57c322c (patch)
tree91e8725ea5a9e3109f6a30872f9a8e012e89ccd5 /sysutils/screen
parentUpdate to 0.12. Unfortunately it still doesn't work, even with fixed oaf, (diff)
Patch against a bug which is a local root vulnerability on other platforms,
but which I could not repeat on FreeBSD. It may still be a problem, but it looks like screen was already dropping privilege before the operation in question. Submitted by: Roman Drahtmueller <draht@suse.de>
Diffstat (limited to 'sysutils/screen')
-rw-r--r--sysutils/screen/Makefile1
-rw-r--r--sysutils/screen/files/patch-sec113
2 files changed, 14 insertions, 0 deletions
diff --git a/sysutils/screen/Makefile b/sysutils/screen/Makefile
index d43cfb135d83..003286f401ca 100644
--- a/sysutils/screen/Makefile
+++ b/sysutils/screen/Makefile
@@ -7,6 +7,7 @@
PORTNAME= screen
PORTVERSION= 3.9.9
+PORTREVISION= 1
CATEGORIES= misc
MASTER_SITES= ftp://ftp.uni-erlangen.de/pub/utilities/screen/ \
${MASTER_SITE_GNU}
diff --git a/sysutils/screen/files/patch-sec1 b/sysutils/screen/files/patch-sec1
new file mode 100644
index 000000000000..abeeb0c48b68
--- /dev/null
+++ b/sysutils/screen/files/patch-sec1
@@ -0,0 +1,13 @@
+--- screen.c.orig Fri May 25 16:40:10 2001
++++ screen.c Mon Sep 3 15:48:24 2001
+@@ -1061,6 +1061,10 @@
+ Attacher();
+ /* NOTREACHED */
+ }
++#ifdef MULTIUSER
++ if (multiattach)
++ Panic(0, "Can't create sessions of other users.");
++#endif
+ debug("screen -r: backend not responding -- still crying\n");
+ }
+ else if (dflag && !mflag)