CVE-2010-4819
Published: 3 October 2011
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "input sanitization flaw."
Priority
Status
Package | Release | Status |
---|---|---|
xorg-server Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
lucid |
Released
(2:1.7.6-2ubuntu7.8)
|
|
maverick |
Not vulnerable
(2:1.9.0-0ubuntu7.3)
|
|
natty |
Not vulnerable
(2:1.10.1-1ubuntu1.2)
|
|
oneiric |
Not vulnerable
(2:1.10.4-1ubuntu4)
|
|
upstream |
Needs triage
|
|
Patches: upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=5725849a1b427cd4a72b84e57f211edb35838718 upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=efcb63d0ce43f96d0ac02b6f4a480dfd2374fc84 (shut gcc up) |