Xres: XResQueryClientPixmapBytes: enable security filtering

Pass each client we're considering to report through XaceHookClientAccess(), so security extensions have a chance to filter them out. Signed-off-by: Enrico Weigelt, metux IT consult <info@metux.net>
2025-04-17 17:44:43 +02:00 · 2025-04-17 17:44:43 +02:00 · 750b65de69
parent 146b04f4e2
commit 750b65de69
1 changed files with 3 additions and 1 deletions
--- a/Xext/xres.c
+++ b/Xext/xres.c
@ -386,7 +386,9 @@ ProcXResQueryClientPixmapBytes(ClientPtr client)

    clientID = CLIENT_ID(stuff->xid);

-    if ((clientID >= currentMaxClients) || !clients[clientID]) {
+    if ((clientID >= currentMaxClients) || !clients[clientID] ||
+        (XaceHookClientAccess(client, clients[clientID], DixReadAccess)
+                              != Success)) {
        client->errorValue = stuff->xid;
        return BadValue;
    }