Red Hat Bugzilla – Bug 185084
CVE-2006-0745 xorg-x11 privilege escalation
Last modified: 2013-01-10 08:56:55 EST
We were notified that Coverity scans of X.Org source code revealed an issue that
could be used by a local user to cause a DoS (remove/mess with root-owned files)
or privilege escalation.
This issue only affected code added after 6.8.2 was released and therefore does
not affect RHEL or FC4 (verified by code inspection)
STRICTLY EMBARGOED until April 6th 2006. Suggest you do not make any commit
even to the embargoed branch until this time.
Note this issue will affect FC4 if you release any FC4 updates that increment
the version; I suggest holding off on any planned FC4 updates unless they are
keeping the same upstream 6.8.2 verison.
We've asked if the embargo can be moved. They're considering this and will let
us know by tommorrow.
This bug was fixed a long time ago in xorg-x11-server-1.0.1-9 and the
latest update is currently xorg-x11-server-1.0.1-9.fc5.1.1
Closing as "ERRATA"