From 1b6b819cd772d5ca78ed5e0e293e2793661eece9 Mon Sep 17 00:00:00 2001 From: marcus Date: Thu, 16 Oct 2003 18:42:38 +0000 Subject: Update to 2.4.4.4. This fixes a few DoS problems, so upgraded is definitely recommended: - Fixed CAN-2003-0793, a local DoS, the socket connection is now non-blocking and limitted to the number of commands - Fixed CAN-2003-0794, a local DoS, the line length is limitted to 4096 bytes (note, this was not a buffer overrun). --- x11/gdm2/Makefile | 3 +-- x11/gdm2/distinfo | 2 +- x11/gdm2/files/patch-ab | 26 +++++++++++++------------- x11/gdm2/files/patch-daemon_errorgui.c | 10 ---------- 4 files changed, 15 insertions(+), 26 deletions(-) delete mode 100644 x11/gdm2/files/patch-daemon_errorgui.c (limited to 'x11') diff --git a/x11/gdm2/Makefile b/x11/gdm2/Makefile index 3f8e7398234a..c56768b9ac37 100644 --- a/x11/gdm2/Makefile +++ b/x11/gdm2/Makefile @@ -6,8 +6,7 @@ # PORTNAME= gdm2 -PORTVERSION= 2.4.4.3 -PORTREVISION= 1 +PORTVERSION= 2.4.4.4 CATEGORIES= x11 gnome MASTER_SITES= ${MASTER_SITE_GNOME} MASTER_SITE_SUBDIR= sources/${PORTNAME:S/2$//}/2.4 diff --git a/x11/gdm2/distinfo b/x11/gdm2/distinfo index f94fd42d0654..7a81ac0afd6d 100644 --- a/x11/gdm2/distinfo +++ b/x11/gdm2/distinfo @@ -1 +1 @@ -MD5 (gnome2/gdm-2.4.4.3.tar.bz2) = e8ddb05a0e3c35943c0a87b51816609c +MD5 (gnome2/gdm-2.4.4.4.tar.bz2) = 8f7bcb70568d5fa4efe0b0aad9493219 diff --git a/x11/gdm2/files/patch-ab b/x11/gdm2/files/patch-ab index c3380dabafba..11f4da7ee56b 100644 --- a/x11/gdm2/files/patch-ab +++ b/x11/gdm2/files/patch-ab @@ -1,5 +1,5 @@ ---- config/gdm.conf.in.orig Wed Aug 20 13:40:45 2003 -+++ config/gdm.conf.in Wed Aug 20 22:29:47 2003 +--- config/gdm.conf.in.orig Fri Oct 10 16:57:25 2003 ++++ config/gdm.conf.in Thu Oct 16 14:33:28 2003 @@ -73,7 +73,7 @@ # To try to kill all clients started at greeter time or in the Init script. # doesn't always work, only if those clients have a window of their own @@ -18,7 +18,7 @@ #SuspendCommand= # Probably should not touch the below this is the standard setup ServAuthDir=@EXPANDED_AUTHDIR@ -@@ -123,7 +123,7 @@ +@@ -127,7 +127,7 @@ # we force X to use specific vts. turn VTAllocation to false if this # is causing problems. #FirstVT=7 @@ -27,7 +27,7 @@ # Should double login be treated with a warning (and possibility to change # vts on linux systems for console logins) #DoubleLoginWarning=true -@@ -200,7 +200,7 @@ +@@ -211,7 +211,7 @@ # The 'theme'. By default we're using the default gtk theme # Of course assuming that gtk got installed in the same prefix, # if not change this. @@ -36,12 +36,12 @@ # Maximum size of an icon, larger icons are scaled down #MaxIconWidth=128 #MaxIconHeight=128 -@@ -372,7 +372,7 @@ - # to the command line - [server-Chooser] - name=Chooser server --command=@X_SERVER@ -+command=@X_SERVER@ vt9 - # Make this not appear in the flexible servers for now, but if you - # wish to allow a chooser server then make this true. This is the - # only way to make a flexible chooser server that behaves nicely. +@@ -364,7 +364,7 @@ + # Definition of the standard X server. + [server-Standard] + name=Standard server +-command=@X_SERVER@ -audit 0 ++command=@X_SERVER@ vt9 -audit 0 + flexible=true + + # To use this server type you should add -query host or -indirect host diff --git a/x11/gdm2/files/patch-daemon_errorgui.c b/x11/gdm2/files/patch-daemon_errorgui.c deleted file mode 100644 index e89a4553f064..000000000000 --- a/x11/gdm2/files/patch-daemon_errorgui.c +++ /dev/null @@ -1,10 +0,0 @@ ---- daemon/errorgui.c.orig Tue Sep 23 00:39:10 2003 -+++ daemon/errorgui.c Tue Sep 23 00:39:21 2003 -@@ -32,6 +32,7 @@ - #include - #include - #include -+#include - #include "gdm.h" - #include "misc.h" - #include "auth.h" -- cgit