X.Org security vulnerability

Tim van der Molen tbm.lists at home.nl
Wed May 3 05:45:43 PDT 2006


"A client of the X server using the X render extension is able to
send requests that will cause a buffer overflow in the server side of
the extension. This overflow can be exploited by an authorized client
to execute malicious code inside the X server, which is generally
running with root privileges. [...] X.Org 6.8.0 and later versions are
vulnerable". Patches are available.

More information about the lfs-security mailing list