On Tue, 8 Oct 2013, Alan Coopersmith wrote: > Pedro Ribeiro ([email protected]) reported an issue to the X.Org > security team in which an authenticated X client can cause an X server > to use memory after it was freed, potentially leading to crash and/or > memory corruption.
Does this happen unknown to the authenticated user, where the X server crashes? Or does the authenticated user actually need some instrumented malicious client to cause the crash? Does the memory corruption allow running some code on the server with different privileges? Does X.org Security use CVSS or some other measurement to decide if a bug is a security vulnerability? If so, where documented? Thanks. _______________________________________________ [email protected]: X.Org support Archives: http://lists.freedesktop.org/archives/xorg Info: http://lists.x.org/mailman/listinfo/xorg Your subscription address: %(user_address)s
