|
|
|
|
| |
| XFree86 which offers a free implementation of XWindows System that runs on UNIX and UNIX like operating systems, has a new version 3.3.3, which offers many security fixes. |
| |
Credit:
XFree86's home page is: http://www.xfree86.org
|
| |
XFree86 was found to contain numerous security vulnerabilities making the usage of the XWindows System a risky thing, now www.XFree86.org released a new version which contain security fixes for those vulnerabilities making it a more secure version.
The security fixes included in this version (3.3.3) are:
1) Several buffer overrun problem discovered since the release of XFree86-3.3.2 have been fixed.
2) Sanity checks on DISPLAY variable.
3) Attempt to stop X connection hijacking (sticky bit for /tmp/.X11-unix) Note that this is only a short-term partial solution, and it is doesn't help at all for some SYSV based OSs (like Solaris 2.x).
We advise administrators who use XFree86 3.3.2 (or earlier) to upgrade to the new version.
|
|
|
|
|
|
|
|
|
|
