CVE-2012-2118

Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
xorg-server	12.10 quantal	Not affected
	12.04 LTS precise	Fixed 2:1.11.4-0ubuntu10.5
	11.10 oneiric	Not affected
	11.04 natty	Not affected
	10.04 LTS lucid	Not affected
	8.04 LTS hardy	Not affected

Notes

jdstrand

Reducing priority because we build with -D_FORTIFY_SOURCE=2 and as of USN-1396-1, Ubuntu's glibc is patched to fix (CVE-2012-0864), so this is reduced to a denial of service. per upstream, only 1.10 and higher are affected: http://lists.x.org/pipermail/xorg-devel/2012-May/031411.html

sbeattie

with experimentation, was not able to cause the 1.10 server to crash in natty and oneiric, marking those not-affected

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
xorg-server	Other: http://patchwork.freedesktop.org/patch/10000/ Other: http://patchwork.freedesktop.org/patch/9998/ Other: http://patchwork.freedesktop.org/patch/9999/ Other: http://patchwork.freedesktop.org/patch/10001/

Status

Notes

jdstrand

sbeattie

Patch details

References

Related Ubuntu Security Notices (USN)

Other references