Xorg security (big) issue
Santavy Peter
peter at santavy.sk
Thu Jan 19 23:53:40 UTC 2012
On Fri, 2012-01-20 at 00:56 +0200, kalinix wrote:
> Just found an article about bypassing any screen locker on latest X Org
> server.
>
> http://seclists.org/oss-sec/2012/q1/200
>
> F15 has 1.10.4-1 but from what I see, F16 has 1.11.1-1 (with latest
> update 11.11.3-1)
>
> Can anyone confirm whether the issue is present on F16?
After upgrading to xkeyboard-config-2.3-3.fc16 it isn't.
( https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-0064 )
Before upgrading to xkeyboard-config-2.3-3.fc16 it is.
(Possible workaround: check the System Settings -> Region and language
-> Layouts -> Options... -> Miscellaneous compatibility options:
"Special keys (Ctrl+Alt+<key>) handled in a server" on.)
Peter
--
__________________________________
Peter Santavy
peter at santavy.sk
http://santavy.sk
----------------------------------
Pouzivam legalny software -> pouzivam slobodny software
OpenSource - slobodny a legalny
More information about the users
mailing list