oss-sec mailing list archives
Re: CVE id request: slim
From: Eygene Ryabinkin <rea-sec () codelabs ru>
Date: Fri, 22 May 2009 08:31:47 +0400
Steven, *, good day. Thu, May 21, 2009 at 08:24:24PM -0400, Steven M. Christey wrote: [...]
SLiM Simple Login Manager 1.3.0 includes places the X authority magic
^^^^^^^^^^^^^^^^
cookie (mcookie) on the command line when invoking xauth from (1) app.cpp and (2) switchuser.cpp, which allows local users to access the X session by listing the process and its arguments.
It either "includes" or "places", but, I think, not both at the same time ;)) "Places" sounds more natural to me, but it seems to be just the matter of taste. -- Eygene
Current thread:
- CVE id request: slim Nico Golde (May 18)
- Re: CVE id request: slim Steven M. Christey (May 21)
- Re: CVE id request: slim Eygene Ryabinkin (May 21)
- Re: CVE id request: slim Steven M. Christey (May 22)
- Re: CVE id request: slim Eygene Ryabinkin (May 21)
- Re: CVE id request: slim Steven M. Christey (May 21)