We were notified that Coverity scans of X.Org source code revealed an issue that could be used by a local user to cause a DoS (remove/mess with root-owned files) or privilege escalation. This issue only affected code added after 6.8.2 was released and therefore does not affect RHEL or FC4 (verified by code inspection) STRICTLY EMBARGOED until April 6th 2006. Suggest you do not make any commit even to the embargoed branch until this time. Note this issue will affect FC4 if you release any FC4 updates that increment the version; I suggest holding off on any planned FC4 updates unless they are keeping the same upstream 6.8.2 verison.
We've asked if the embargo can be moved. They're considering this and will let us know by tommorrow.
Lifting embargo.
This bug was fixed a long time ago in xorg-x11-server-1.0.1-9 and the latest update is currently xorg-x11-server-1.0.1-9.fc5.1.1 Closing as "ERRATA"