The X server had two security issues and one bug that is
fixed by this update.
CVE-2011-4028: It is possible for a local attacker to
deduce if a file exists or not by exploiting the way that
Xorg creates its lock files.
CVE-2011-4029: It is possible for a non-root local user to
set the read permission for all users on any file or
directory.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 11.3 | i586 | xorg-x11-server-extra | < 7.5_1.8.0-10.15.2 | xorg-x11-server-extra-7.5_1.8.0-10.15.2.i586.rpm |
openSUSE | 11.3 | x86_64 | xorg-x11-server-extra | < 7.5_1.8.0-10.15.2 | xorg-x11-server-extra-7.5_1.8.0-10.15.2.x86_64.rpm |
openSUSE | 11.3 | x86_64 | xorg-x11-server-sdk | < 7.5_1.8.0-10.15.2 | xorg-x11-server-sdk-7.5_1.8.0-10.15.2.x86_64.rpm |
openSUSE | 11.3 | i586 | xorg-x11-server-sdk | < 7.5_1.8.0-10.15.2 | xorg-x11-server-sdk-7.5_1.8.0-10.15.2.i586.rpm |
openSUSE | 11.3 | x86_64 | xorg-x11-server | < 7.5_1.8.0-10.15.2 | xorg-x11-server-7.5_1.8.0-10.15.2.x86_64.rpm |
openSUSE | 11.3 | i586 | xorg-x11-server | < 7.5_1.8.0-10.15.2 | xorg-x11-server-7.5_1.8.0-10.15.2.i586.rpm |
openSUSE | 11.3 | i586 | xorg-x11-xvnc | < 7.5_1.8.0-10.15.2 | xorg-x11-Xvnc-7.5_1.8.0-10.15.2.i586.rpm |
openSUSE | 11.3 | x86_64 | xorg-x11-xvnc | < 7.5_1.8.0-10.15.2 | xorg-x11-Xvnc-7.5_1.8.0-10.15.2.x86_64.rpm |