ubuntu-x-swat team mailing list archive

Thread
Date

[Bug 551193] Re: typo in mod() macro leads to 3rd-party controllable Xorg crash/exploit

To: ubuntu-x-swat@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <551193@xxxxxxxxxxxxxxxxxx>
Date: Mon, 29 Mar 2010 21:00:18 -0000
Reply-to: Bug 551193 <551193@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package xorg-server - 2:1.7.6-1ubuntu2

---------------
xorg-server (2:1.7.6-1ubuntu2) lucid; urgency=low

  * Add 112_xaa-fbcomposite-fix-negative-size.patch:  Prevent 3rd-party
    controllable Xorg crash/exploit when XAA and compositing is in use.
    Be more careful in sign-changes with mod().
    (LP: #551193)
 -- Bryce Harrington <bryce@xxxxxxxxxx>   Mon, 29 Mar 2010 13:37:06 -0700

** Changed in: xorg-server (Ubuntu)
       Status: Fix Committed => Fix Released

-- 
typo in mod() macro leads to 3rd-party controllable Xorg crash/exploit
https://bugs.launchpad.net/bugs/551193
You received this bug notification because you are a member of Ubuntu-X,
which is subscribed to xorg-server in ubuntu.

References

[Bug 551193] [NEW] typo in mod() macro leads to 3rd-party controllable Xorg crash/exploit
From: Kees Cook, 2010-03-29