CVE-2011-4613
Priority
Medium
Description
On Debian systems, the X wrapper (/usr/bin/X) is a setuid-root binary that
checks for some security requirements before launching Xorg with root
privileges. By default, the wrapper's configuration file only allows users
whose controlling TTY (console) to start the X server, but it is possible to
bypass this restriction by connecting another file (with similar tty
properties) to standard input before launching the X wrapper.
checks for some security requirements before launching Xorg with root
privileges. By default, the wrapper's configuration file only allows users
whose controlling TTY (console) to start the X server, but it is possible to
bypass this restriction by connecting another file (with similar tty
properties) to standard input before launching the X wrapper.
References
Bugs
Notes
jdstrand> requires pty access. In combination with CVE-2011-4029 this becomes
more important, but that CVE is fixed in Ubuntu.
mdeslaur> Debian fixed this by dropping support for alternate TTY devices,
mdeslaur> which we need for upstart support. See changelog for
mdeslaur> (1:7.4~2ubuntu2) and (1:7.4~4).
more important, but that CVE is fixed in Ubuntu.
mdeslaur> Debian fixed this by dropping support for alternate TTY devices,
mdeslaur> which we need for upstart support. See changelog for
mdeslaur> (1:7.4~2ubuntu2) and (1:7.4~4).
Assigned-to
mdeslaur
Package
| Upstream: | released (1:7.6+10) |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (1:7.5+5ubuntu1.1) |
| Ubuntu 10.10 (Maverick Meerkat): | released (1:7.5+6ubuntu3.1) |
| Ubuntu 11.04 (Natty Narwhal): | released (1:7.6+4ubuntu3.2) |
| Ubuntu 11.10 (Oneiric Ocelot): | released (1:7.6+7ubuntu7.1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (1:7.6+10ubuntu1) |