1. Gentoo Linux Security Advisory
| Advisory Reference | GLSA 200605-02 / X.Org |
| Release Date | May 02, 2006 |
| Latest Revision | May 02, 2006: 01 |
| Impact | high |
| Exploitable | local |
| Package | Vulnerable versions | Unaffected versions | Architecture(s) |
| x11-base/xorg-x11 | < 6.8.2-r7 | >= 6.8.2-r7 | All supported architectures |
Related bugreports: #130979
A buffer overflow in the XRender extension potentially allows any X.Org user to execute arbitrary code with elevated privileges.
X.Org is X.Org Foundation's public implementation of the X Window System.
X.Org miscalculates the size of a buffer in the XRender extension.
An X.Org user could exploit this issue to make the X server execute arbitrary code with elevated privileges.
There is no known workaround at this time.
All X.Org users should upgrade to the latest version:
Code Listing 3.1: Resolution |
# emerge --sync # emerge --ask --oneshot --verbose ">=x11-base/xorg-x11-6.8.2-r7" |