"Some vulnerabilities have been reported in the X.Org X11 X Font Server (XFS), which can be exploited by malicious, local users to gain escalated privileges."
Reported to have been fixed in XFS 1.0.5.
Reproducible: Didn't try
Steps to Reproduce:
x11, please advise.
Yeah, I saw this stuff. Was thinking it might be convenient to just push
out a single GLSA for xfs, combined with the previous fix to the init
script. I'll get something in the tree soon.
1.0.5 is in the tree.
Arches, please test and mark stable.
Targets: "alpha amd64 arm hppa mips ppc ppc64 s390 sh sparc x86"
Stable for HPPA.
All arches done, please file a GLSA request.
(In reply to comment #11)
> All arches done, please file a GLSA request.
11:55:52 <+CIA-23> vapier * gentoo-x86/x11-apps/xfs/ (xfs-1.0.5.ebuild xfs-1.0.4-r1.ebuild):
11:55:52 <+CIA-23> arm/s390/sh stable