Candidate: CVE-2014-4910
PublicDate: 2014-07-24 14:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4910
 http://lists.x.org/archives/xorg-commit/2014-July/036840.html
 http://www.openwall.com/lists/oss-security/2014/07/11
Description:
 Directory traversal vulnerability in tools/backlight_helper.c in X.Org
 xf86-video-intel 2.99.911 allows remote attackers to create or overwrite
 arbitrary files via a .. (dot dot) in the interface name.
Ubuntu-Description:
Notes:
 mdeslaur> added in 2.99.911
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_xserver-xorg-video-intel:
upstream_xserver-xorg-video-intel: needs-triage
lucid_xserver-xorg-video-intel: ignored (reached end-of-life)
precise_xserver-xorg-video-intel: not-affected
saucy_xserver-xorg-video-intel: not-affected
trusty_xserver-xorg-video-intel: not-affected
trusty/esm_xserver-xorg-video-intel: DNE (trusty was not-affected)
devel_xserver-xorg-video-intel: not-affected (2:2.99.910-0ubuntu1)