xterm/xterm-forbid_window_and_font_ops.patch

# forbid dangerous escape sequences (font loading)

diff --git a/XTerm.ad b/XTerm.ad
--- a/XTerm.ad
+++ b/XTerm.ad
@@ -260,16 +260,21 @@
 !*faceSize: 8
 
 ! Here is a pattern that is useful for double-clicking on a URL:
 !*charClass: 33:48,35:48,37-38:48,43-47:48,58:48,61:48,63-64:48,95:48,126:48
 !
 ! Alternatively,
 !*on2Clicks: regex [[:alpha:]]+://([[:alnum:]!#+,./=?@_~-]|(%[[:xdigit:]][[:xdigit:]]))+
 
+! Security: Disallow operations that might allow raw text being pasted to xterm to
+! execute code.
+*allowWindowOps:	false
+*allowFontOps:		false
+
 !! We want a 8bit clean xterm
 *eightBitInput:        true
 *eightBitOutput:       true
 
 !! Default Settings
 *termName:             xterm
 *pointerShape:         top_left_arrow
 *scrollKey:            true
diff --git a/xterm.man b/xterm.man
--- a/xterm.man
+++ b/xterm.man
@@ -1896,17 +1896,17 @@ The default is \*(``false\*(''.
 .TP
 .B "allowColorOps (\fPclass\fB AllowColorOps)"
 Specifies whether control sequences that set/query the dynamic colors should be allowed.
 ANSI colors are unaffected by this resource setting.
 The default is \*(``true\*(''.
 .TP
 .B "allowFontOps (\fPclass\fB AllowFontOps)"
 Specifies whether control sequences that set/query the font should be allowed.
-The default is \*(``true\*(''.
+The default is \*(``false\*(''.
 .TP 8
 .B "allowPasteControls (\fPclass\fB AllowPasteControls)"
 If true, allow control characters such as BEL and CAN to be pasted.
 Formatting characters (tab, newline) are always allowed.
 Other C0 control characters are suppressed unless this resource is enabled.
 The exact set of control characters (C0 and C1)
 depends upon whether UTF-8 encoding is used,
 as well as the \fBallowC1Printable\fP resource.
Accepting request 176920 from home:pcerny:factory ! temporarily pass gpg verification, since it claims that ! the signature file is inaccessible - Patch #293 - 2013/05/27 * modify sample xterm.spec to use newer icon * add configure option --with-icon-symlink to work around systems which map icon requests for to a single "xterm" icon, but neglect to install the icon needed for window decorations (report by H Merijn Brand). * improve parameterizing of sample xterm.spec * amend fix for printer from patch #280, removing a reset of the signal handler for SIGCHLD (report by Joe Julian). * set environment variable XTERM_FILTER if a locale-filter is used. * enable DEBUG logic when --enable-trace configure option is given. * improve description of initialFont, set-vt-font and set-tex-text in manpage (Debian #707899). * fix regression from patch #292; selecting a word that ended at the right margin without wrapping would not select the last cell (report by Christian Weisgerber). - cleanup of spec file and patches OBS-URL: https://build.opensuse.org/request/show/176920 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=74 2013-05-29 14:46:55 +00:00			`# forbid dangerous escape sequences (font loading)`

			`diff --git a/XTerm.ad b/XTerm.ad`
			`--- a/XTerm.ad`
			`+++ b/XTerm.ad`
Accepting request 201124 from home:pcerny:factory - Patch #297 - 2013/09/10 OBS-URL: https://build.opensuse.org/request/show/201124 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=82 2013-09-27 13:48:16 +00:00			`@@ -260,16 +260,21 @@`
Accepting request 176920 from home:pcerny:factory ! temporarily pass gpg verification, since it claims that ! the signature file is inaccessible - Patch #293 - 2013/05/27 * modify sample xterm.spec to use newer icon * add configure option --with-icon-symlink to work around systems which map icon requests for to a single "xterm" icon, but neglect to install the icon needed for window decorations (report by H Merijn Brand). * improve parameterizing of sample xterm.spec * amend fix for printer from patch #280, removing a reset of the signal handler for SIGCHLD (report by Joe Julian). * set environment variable XTERM_FILTER if a locale-filter is used. * enable DEBUG logic when --enable-trace configure option is given. * improve description of initialFont, set-vt-font and set-tex-text in manpage (Debian #707899). * fix regression from patch #292; selecting a word that ended at the right margin without wrapping would not select the last cell (report by Christian Weisgerber). - cleanup of spec file and patches OBS-URL: https://build.opensuse.org/request/show/176920 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=74 2013-05-29 14:46:55 +00:00			`!*faceSize: 8`

			`! Here is a pattern that is useful for double-clicking on a URL:`
			`!*charClass: 33:48,35:48,37-38:48,43-47:48,58:48,61:48,63-64:48,95:48,126:48`
			`!`
			`! Alternatively,`
			`!*on2Clicks: regex [[:alpha:]]+://([[:alnum:]!#+,./=?@_~-]\|(%[[:xdigit:]][[:xdigit:]]))+`

			`+! Security: Disallow operations that might allow raw text being pasted to xterm to`
			`+! execute code.`
			`+*allowWindowOps: false`
			`+*allowFontOps: false`
			`+`
			`!! We want a 8bit clean xterm`
			`*eightBitInput: true`
			`*eightBitOutput: true`

			`!! Default Settings`
			`*termName: xterm`
			`*pointerShape: top_left_arrow`
			`*scrollKey: true`
			`diff --git a/xterm.man b/xterm.man`
			`--- a/xterm.man`
			`+++ b/xterm.man`
Accepting request 357555 from home:pcerny:factory - Patch #322 - 2016/01/02 * fix regression due to incorrect fix for compiler warning when allocating storage for /etc/shells (reports by Ashish Shukla, Debian #809646). - Patch #321 - 2015/12/31 * add resource keepClipboard, escape sequence and action keep-clipboard. * add optional feature to capture text copied to clipboard at the time of copying rather than at the time the clipboard contents are requested for pasting (patch by Milan Mehner). * improve a special case where the -e option was used to pass a single-quoted command via luit, by wrapping it in a “sh -c” (report by Keith Hedger). * minor fix for type-cleanliness when allocating storage for /etc/shells (Tobias Stoeckmann). * fix a typo in manual page (Dan Church). * fix minor file-descriptor leak; after calling openpty, the slave's file descriptor is not needed (report by Juha Nurmela). * editorial change to ctlseqs.ms (report by David Gomboc). * minor updates for autoconf macros. * update config.guess, config.sub - vttest 20140305 * save/restore color enable-flag for menu 11.6 in a couple of places so that the ISO-6429 tests do not reset it unexpectedly. * amend the REP test to not reset colors if it happens to be run via the menu entry for BCE-related tests. - vttest 20140116 * cosmetic changes (suggested by Itay Chamiel): OBS-URL: https://build.opensuse.org/request/show/357555 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=134 2016-02-03 13:16:19 +00:00			@@ -1896,17 +1896,17 @@ The default is \(``false\(''.
Accepting request 176920 from home:pcerny:factory ! temporarily pass gpg verification, since it claims that ! the signature file is inaccessible - Patch #293 - 2013/05/27 * modify sample xterm.spec to use newer icon * add configure option --with-icon-symlink to work around systems which map icon requests for to a single "xterm" icon, but neglect to install the icon needed for window decorations (report by H Merijn Brand). * improve parameterizing of sample xterm.spec * amend fix for printer from patch #280, removing a reset of the signal handler for SIGCHLD (report by Joe Julian). * set environment variable XTERM_FILTER if a locale-filter is used. * enable DEBUG logic when --enable-trace configure option is given. * improve description of initialFont, set-vt-font and set-tex-text in manpage (Debian #707899). * fix regression from patch #292; selecting a word that ended at the right margin without wrapping would not select the last cell (report by Christian Weisgerber). - cleanup of spec file and patches OBS-URL: https://build.opensuse.org/request/show/176920 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=74 2013-05-29 14:46:55 +00:00			`.TP`
			`.B "allowColorOps (\fPclass\fB AllowColorOps)"`
			`Specifies whether control sequences that set/query the dynamic colors should be allowed.`
			`ANSI colors are unaffected by this resource setting.`
			The default is \(``true\(''.
			`.TP`
			`.B "allowFontOps (\fPclass\fB AllowFontOps)"`
			`Specifies whether control sequences that set/query the font should be allowed.`
			-The default is \(``true\(''.
			+The default is \(``false\(''.
Accepting request 293462 from home:pcerny:factory - Patch #317 - 2015/03/27 - Patch #316 - 2015/03/07 - Patch #315 - 2015/03/02 - Patch #314 - 2014/12/28 OBS-URL: https://build.opensuse.org/request/show/293462 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=127 2015-03-28 08:55:26 +00:00			`.TP 8`
Accepting request 176920 from home:pcerny:factory ! temporarily pass gpg verification, since it claims that ! the signature file is inaccessible - Patch #293 - 2013/05/27 * modify sample xterm.spec to use newer icon * add configure option --with-icon-symlink to work around systems which map icon requests for to a single "xterm" icon, but neglect to install the icon needed for window decorations (report by H Merijn Brand). * improve parameterizing of sample xterm.spec * amend fix for printer from patch #280, removing a reset of the signal handler for SIGCHLD (report by Joe Julian). * set environment variable XTERM_FILTER if a locale-filter is used. * enable DEBUG logic when --enable-trace configure option is given. * improve description of initialFont, set-vt-font and set-tex-text in manpage (Debian #707899). * fix regression from patch #292; selecting a word that ended at the right margin without wrapping would not select the last cell (report by Christian Weisgerber). - cleanup of spec file and patches OBS-URL: https://build.opensuse.org/request/show/176920 OBS-URL: https://build.opensuse.org/package/show/X11:terminals/xterm?expand=0&rev=74 2013-05-29 14:46:55 +00:00			`.B "allowPasteControls (\fPclass\fB AllowPasteControls)"`
			`If true, allow control characters such as BEL and CAN to be pasted.`
			`Formatting characters (tab, newline) are always allowed.`
			`Other C0 control characters are suppressed unless this resource is enabled.`
			`The exact set of control characters (C0 and C1)`
			`depends upon whether UTF-8 encoding is used,`
			`as well as the \fBallowC1Printable\fP resource.`