X.Org security vulnerability

Tim van der Molen tbm.lists at home.nl
Wed May 3 05:45:43 PDT 2006


<http://lists.freedesktop.org/archives/xorg/2006-May/015136.html>:

"A client of the X server using the X render extension is able to
send requests that will cause a buffer overflow in the server side of
the extension. This overflow can be exploited by an authorized client
to execute malicious code inside the X server, which is generally
running with root privileges. [...] X.Org 6.8.0 and later versions are
vulnerable". Patches are available.



More information about the lfs-security mailing list