iDefense reported several flaws in the X.org MIT-SHM extension. The iDefense advisory states: Local exploitation of an information disclosure vulnerability in the X.Org X server, as included in various vendors' operating system distributions, could allow an attacker to gain access to sensitive information stored in server memory. The vulnerability exists when creating a Pixmap in the fbShmPutImage() function. The width and height of the Pixmap, which are controlled by the user, are not properly validated to ensure that the Pixmap they define are within the bounds of the shared memory segment. This allows an attacker to read arbitrary areas of memory in the X Server process.
Public now: http://lists.freedesktop.org/archives/xorg/2008-June/036026.html
xorg-x11-server-1.4.99.902-3.20080612.fc9 has been submitted as an update for Fedora 9
iDefense advisory: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=722
xorg-x11-server-1.4.99.902-3.20080612.fc9 has been pushed to the Fedora 9 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update xorg-x11-server'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F9/FEDORA-2008-5254
xorg-x11-server-1.3.0.0-17.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
xorg-x11-server-1.4.99.902-3.20080612.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
xorg-x11-server-1.3.0.0-46.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Red Hat Enterprise Linux: http://rhn.redhat.com/errata/RHSA-2008-0503.html http://rhn.redhat.com/errata/RHSA-2008-0502.html http://rhn.redhat.com/errata/RHSA-2008-0504.html http://rhn.redhat.com/errata/RHSA-2008-0512.html Fedora: https://admin.fedoraproject.org/updates/F7/FEDORA-2008-5285 https://admin.fedoraproject.org/updates/F8/FEDORA-2008-5279 https://admin.fedoraproject.org/updates/F9/FEDORA-2008-5254