There are a number of vulnerabilities that affect the version of XFree86
supplied with Enterprise Linux. An update, RHSA-2003:065, is being worked on
and packages available for QA this week.
A vulnerability in the MIT-SHM extension of the X server allows
local users to read and write arbitrary shared memory, to
cause a denial of service or gain privileges. Fixed, but it was an
incomplete fix - for the case where the X server is started
from xdm which was not handled. A more complete patch was
XDM restrictions bypassed by non existent directory
It is fixed in the upstream 4.2.0 tarball
xterm contains escape sequence to report current window title.
Possible to lock up xterm with corrupt DEC UDK sequence, Thomas
Dickey says it affects all versions, my initial analysis was
These were fixed by