diff options
| author | kwm <kwm@FreeBSD.org> | 2011-10-19 02:24:28 +0800 |
|---|---|---|
| committer | kwm <kwm@FreeBSD.org> | 2011-10-19 02:24:28 +0800 |
| commit | df119ce8c32e56f6cd4863182029aef3640fd186 (patch) | |
| tree | 195c827a55f400be1b12fb5294b42b0ce2428517 /security/vuxml | |
| parent | b1ad1cca822a4af16c1589e827384e7d829cbbf7 (diff) | |
| download | freebsd-ports-gnome-df119ce8c32e56f6cd4863182029aef3640fd186.tar.gz freebsd-ports-gnome-df119ce8c32e56f6cd4863182029aef3640fd186.tar.zst freebsd-ports-gnome-df119ce8c32e56f6cd4863182029aef3640fd186.zip | |
Document a File disclosure vulnerability and File permission change vulnerability
in xorg-server.
Obtained from: http://lists.freedesktop.org/archives/xorg-announce/2011-October/001744.html
upstream xorg-server
Security: CVE-2011-4028, CVE-2011-4029
Diffstat (limited to 'security/vuxml')
| -rw-r--r-- | security/vuxml/vuln.xml | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 7cff8de9f5e8..80879b9c7c05 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,41 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="8441957c-f9b4-11e0-a78a-bcaec565249c"> + <topic>Xorg server -- two vulnerabilities in X server lock handling code</topic> + <affects> + <package> + <name>xorg-server</name> + <range><lt>1.7.7_3</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Matthieu Herrb reports:</p> + <blockquote cite="http://lists.freedesktop.org/archives/xorg-announce/2011-October/001744.html"> + <p>It is possible to deduce if a file exists or not by exploiting the + way that Xorg creates its lock files. This is caused by the fact + that the X server is behaving differently if the lock file already + exists as a symbolic link pointing to an existing or non-existing + file.</p> + <p>It is possible for a non-root user to set the permissions for all + users on any file or directory to 444, giving unwanted read access + or causing denies of service (by removing execute permission). + This is caused by a race between creating the lock file and + setting its access modes.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2011-4028</cvename> + <cvename>CVE-2011-4029</cvename> + </references> + <dates> + <discovery>2011-18-FIXME</discovery> + <entry>2011-10-18</entry> + </dates> + </vuln> + <vuln vid="a95092a6-f8f1-11e0-a7ea-00215c6a37bb"> <topic>asterisk -- remote crash vulnerability in SIP channel driver</topic> <affects> |