CVE-2014-4910 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-4910): Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the interface name. Maintainer(s), please drop the vulnerable version.
patch linked in the CVE appears in .913, will remove * 2.99.911-r1 * 2.99.912 * 2.99.912-r1
+ 12 Jan 2015; Rémi Cardona <remi@gentoo.org> + -xf86-video-intel-2.99.911-r1.ebuild, -xf86-video-intel-2.99.912.ebuild, + -xf86-video-intel-2.99.912-r1.ebuild: + Remove versions vulnerable to CVE-2014-4910, see bug #536356. +
Closed as [noglsa].