Xorg vulnerabilities galore

Discussion in 'all things UNIX' started by Gullible Jones, May 23, 2013.

Thread Status:
Not open for further replies.
  1. Gullible Jones

    Gullible Jones Registered Member

    Joined:
    May 16, 2013
    Posts:
    1,466
    Most of these don't look like they impact end users very much. However, the nature of the bugs makes me a bit dubious about Xorg's code quality.

    Wayland can't go mainstream soon enough... I just hope that other UNIXes aren't left in the cold.
     
  2. NGRhodes

    NGRhodes Registered Member

    Joined:
    Jun 23, 2003
    Posts:
    2,381
    Location:
    West Yorkshire, UK
    Hi, its hard to assume its a problem with the Xorg code, could well be someone has devised some new bug hunting techniques (like when fuzzing came on the scene) that simply exposes them.

    Should be admirable that the Xorg developers have worked through them and got fixes ready quickly.

    Cheers, Nick
     
  3. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,146
    These have nothing to do with new bug hunting techniques or fuzzing.

    http://t.co/BxbVacyQ1j

    There's the full slides from cansec west where Ilja presents these vulns among others, exposing significant Linux security issues that are common in many distros.

    Xorg's reaction was decent, they accepted the vulns. Others weren't so decent.
     
  4. NGRhodes

    NGRhodes Registered Member

    Joined:
    Jun 23, 2003
    Posts:
    2,381
    Location:
    West Yorkshire, UK
    Cheers :), that was a good read.
     
    Last edited: May 29, 2013
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.