CVE-2007-5958
Published: 18 January 2008
X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.
Priority
Status
Package | Release | Status |
---|---|---|
xorg-server Launchpad, Ubuntu, Debian |
dapper |
Released
(1:1.0.2-0ubuntu10.8)
|
edgy |
Released
(1:1.1.1-0ubuntu12.3)
|
|
feisty |
Released
(2:1.2.0-3ubuntu8.1)
|
|
gutsy |
Released
(2:1.3.0.0.dfsg-12ubuntu8.1)
|
|
upstream |
Not vulnerable
(code removed)
|