[ubuntu/oneiric-security] xorg-server 2:1.10.4-1ubuntu4.1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Oct 18 16:03:57 UTC 2011
xorg-server (2:1.10.4-1ubuntu4.1) oneiric-security; urgency=low
* SECURITY UPDATE: file existence disclosure
- debian/patches/508_CVE-2011-4028.patch: open lockfile with O_NOFOLLOW
in os/utils.c.
- CVE-2011-4028
* SECURITY UPDATE: privilege escalation via file permission change
- debian/patches/509_CVE-2011-4029.patch: use fchmod to prevent race
in os/utils.c.
- CVE-2011-4029
Date: Thu, 13 Oct 2011 10:55:35 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu X-SWAT <ubuntu-x at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/xorg-server/2:1.10.4-1ubuntu4.1
-------------- next part --------------
Format: 1.8
Date: Thu, 13 Oct 2011 10:55:35 -0400
Source: xorg-server
Binary: xserver-xorg-core xserver-xorg-core-udeb xserver-xorg-dev xdmx xdmx-tools xnest xvfb xserver-xephyr xserver-xfbdev xserver-xorg-core-dbg xserver-common
Architecture: source
Version: 2:1.10.4-1ubuntu4.1
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu X-SWAT <ubuntu-x at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
xdmx - distributed multihead X server
xdmx-tools - Distributed Multihead X tools
xnest - Nested X server
xserver-common - common files used by various X servers
xserver-xephyr - nested X server
xserver-xfbdev - Linux framebuffer device tiny X server
xserver-xorg-core - Xorg X server - core server
xserver-xorg-core-dbg - Xorg - the X.Org X server (debugging symbols)
xserver-xorg-core-udeb - Xorg X server - core server (udeb)
xserver-xorg-dev - Xorg X server - development files
xvfb - Virtual Framebuffer 'fake' X server
Changes:
xorg-server (2:1.10.4-1ubuntu4.1) oneiric-security; urgency=low
.
* SECURITY UPDATE: file existence disclosure
- debian/patches/508_CVE-2011-4028.patch: open lockfile with O_NOFOLLOW
in os/utils.c.
- CVE-2011-4028
* SECURITY UPDATE: privilege escalation via file permission change
- debian/patches/509_CVE-2011-4029.patch: use fchmod to prevent race
in os/utils.c.
- CVE-2011-4029
Checksums-Sha1:
c78340fc0ac219562c7f173b34a672a82fabf523 3807 xorg-server_1.10.4-1ubuntu4.1.dsc
7037c257688f6ec571b7068e31dde703c1df697d 522672 xorg-server_1.10.4-1ubuntu4.1.diff.gz
Checksums-Sha256:
09c99bf00a3a0832af88e3e997c4c19af22482e874c060492c34bfef2a33047a 3807 xorg-server_1.10.4-1ubuntu4.1.dsc
be0a29396ec416a48d5efa05fd6f64eba7297887d4bb678c6d6c2b0a9a94e1d8 522672 xorg-server_1.10.4-1ubuntu4.1.diff.gz
Files:
56cc34fb5d6676da78146c04c1fcab56 3807 x11 optional xorg-server_1.10.4-1ubuntu4.1.dsc
5a182787ac83d14cd1cfa81281db608a 522672 x11 optional xorg-server_1.10.4-1ubuntu4.1.diff.gz
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>
More information about the Oneiric-changes
mailing list