Ubuntu

“xorg-server” 2:1.10.4-1ubuntu4.1 source package in The Oneiric Ocelot

Publishing history

2:1.10.4-1ubuntu4.1
SUPERSEDED: Oneiric pocket Updates in component main and section x11
  • Removed from disk on 2013-04-18.
  • Removal requested on 2011-10-28.
  • Superseded on 2011-10-27 by xorg-server - 2:1.10.4-1ubuntu4.2
  • Published on 2011-10-18
  • Copied from ubuntu oneiric in Private PPA for Ubuntu Security Team by Marc Deslauriers
2:1.10.4-1ubuntu4.1
SUPERSEDED: Oneiric pocket Security in component main and section x11
  • Removed from disk on 2013-04-18.
  • Removal requested on 2013-04-18.
  • Superseded on 2013-04-17 by xorg-server - 2:1.10.4-1ubuntu4.5
  • Published on 2011-10-18
  • Copied from ubuntu oneiric in Private PPA for Ubuntu Security Team by Marc Deslauriers

Changelog

xorg-server (2:1.10.4-1ubuntu4.1) oneiric-security; urgency=low

  * SECURITY UPDATE: file existence disclosure
    - debian/patches/508_CVE-2011-4028.patch: open lockfile with O_NOFOLLOW
      in os/utils.c.
    - CVE-2011-4028
  * SECURITY UPDATE: privilege escalation via file permission change
    - debian/patches/509_CVE-2011-4029.patch: use fchmod to prevent race
      in os/utils.c.
    - CVE-2011-4029
 -- Marc Deslauriers <email address hidden>   Thu, 13 Oct 2011 10:55:35 -0400