Bugtraq mailing list archives
XFree86 3.3.2's setup tool /tmp race
From: root () DEATH GDS RO (Adrian Voinea)
Date: Sun, 8 Nov 1998 17:55:49 +0200
Hello, XFree86 3.3.2's setup tool 'xf86config', when it runs 'X -probeonly -pn -xf86config /tmp/XF86Config.tmp' creates 2 files with mode 644 in /tmp, XF86Config.tmp and dumbconfig.2 and then erases them: <...> Do you want me to run 'X -probeonly' now? y It is possible that the hardware detection routines in the server will somehow cause the system to crash and the screen to remain blank. If this is the case, do not choose this option the next time. The server may need a Ramdac, ClockChip or special option (e.g. "nolinear" for S3) to probe and start-up correctly. Press enter to continue, or ctrl-c to abort. Running X -probeonly -pn -xf86config /tmp/XF86Config.tmp. X -probeonly call failed. No Clocks line inserted. <...> If any user links /tmp/XF86Config.tmp or /tmp/dumbconfig.2 to any file on the system, and the root answers "y" to "Do you want me to run 'X -probeonly' now?", the file will be overwritten. I believe the 'xf86config' included in the earlier versions of XFree86 has this problem too. I hope the XFree86 developers will release a patch or at least fix this problem in XFree86 3.3.3, because this is a serious problem, because many systems use XFree86. Regards, Adrian Voinea
Current thread:
- Re: Possible mail spool problem, (continued)
- Re: Possible mail spool problem CyberPsychotic (Nov 05)
- Re: Possible mail spool problem Conrad Juleff (Nov 05)
- various *lame* DoS attacks Conrad Juleff (Nov 05)
- Re: various *lame* DoS attacks puppet (Nov 07)
- Sendmail DoS (was: Re: various *lame* DoS attacks) net.ikon (Nov 12)
- Re: another /usr/dt/bin/dtappgather feature! Ben Collins (Nov 04)
- Re: another /usr/dt/bin/dtappgather feature! Scott Cromar (Nov 05)
- Re: another /usr/dt/bin/dtappgather feature! J.A. Gutierrez (Nov 06)
- Re: another /usr/dt/bin/dtappgather feature! Casper Dik (Nov 09)
- Sun Security Bulletin #00178 joshua grubman (Nov 09)
- XFree86 3.3.2's setup tool /tmp race Adrian Voinea (Nov 08)
- Secure-linux patch Ernst Jan Plugge (Nov 05)
- Re: quakeworld/win32 DoS Alexander Sanda (Nov 05)
- Re: another /usr/dt/bin/dtappgather feature! Paolo Amendola (Nov 06)