Synopsis: Important: xorg-x11-server security update
Issue date: 2010-04-28
CVE Names: CVE-2010-1166
An incorrect calculation flaw was discovered in the X.Org Render
extension. A malicious, authorized client could exploit this issue to
crash the X.Org server or, potentially, execute arbitrary code with root
privileges. (CVE-2010-1166)
All running X.Org server instances must be restarted for this update to
take effect.
SL 5.x
SRPMS:
xorg-x11-server-1.1.1-48.76.el5_5.1.src.rpm
i386:
xorg-x11-server-sdk-1.1.1-48.76.el5_5.1.i386.rpm
xorg-x11-server-Xdmx-1.1.1-48.76.el5_5.1.i386.rpm
xorg-x11-server-Xephyr-1.1.1-48.76.el5_5.1.i386.rpm
xorg-x11-server-Xnest-1.1.1-48.76.el5_5.1.i386.rpm
xorg-x11-server-Xorg-1.1.1-48.76.el5_5.1.i386.rpm
xorg-x11-server-Xvfb-1.1.1-48.76.el5_5.1.i386.rpm
xorg-x11-server-Xvnc-source-1.1.1-48.76.el5_5.1.i386.rpm
x86_64:
xorg-x11-server-sdk-1.1.1-48.76.el5_5.1.x86_64.rpm
xorg-x11-server-Xdmx-1.1.1-48.76.el5_5.1.x86_64.rpm
xorg-x11-server-Xephyr-1.1.1-48.76.el5_5.1.x86_64.rpm
xorg-x11-server-Xnest-1.1.1-48.76.el5_5.1.x86_64.rpm
xorg-x11-server-Xorg-1.1.1-48.76.el5_5.1.x86_64.rpm
xorg-x11-server-Xvfb-1.1.1-48.76.el5_5.1.x86_64.rpm
xorg-x11-server-Xvnc-source-1.1.1-48.76.el5_5.1.x86_64.rpm
-Connie Sieh
-Troy Dawson