Bugtraq mailing list archives

quickie fix to xdm port problem

From: mrn () SHAW WAVE CA (id est)
Date: Tue, 19 May 1998 08:16:46 -0600


When "xdm" starts up, it creates a random high-numbered port
that is apparently vulnerable to buffer overruns.  The following
is an extremely stone-knives-and-bearskins hack to deal with
this problem, useful for those of us who just run X on a single
machine and don't use "chooser".

Get the source for "xdm" and comment out the line

    chooserFd = socket (AF_INET, SOCK_STREAM, 0);

in the file "socket.c".  Build and install.  That's it.

This closes that particular hole, abeit crudely.  xdm starts
up, seems to run normally, and does not create that random high-
numbered port.

Works for me under RedHat 4.2 (Linux 2.0.33), your mileage may vary.

Current thread:

quickie fix to xdm port problem id est (May 19)
- <Possible follow-ups>
- Re: quickie fix to xdm port problem Ian Goldberg (May 21)