xorg-x11-server: privilege escalation
| Package(s): | xorg-x11-server |
CVE #(s): | CVE-2006-0745
|
| Created: | March 20, 2006 |
Updated: | March 22, 2006 |
| Description: |
Coverity scanned the X.Org source code for problems and reported their
findings to the X.Org development team. Upon analysis, Alan Coopersmith, a
member of the X.Org development team, noticed a couple of serious security
issues in the findings. In particular, the Xorg server can be exploited
for root privilege escalation by passing a path to malicious modules using
the -modulepath command line argument. Also, the Xorg server can be
exploited to overwrite any root writable file on the filesystem with the
-logfile command line argument. See this
bulletin for more details. |
| Alerts: |
|
