USN-1107-1: x11-xserver-utils vulnerability
06 April 2011
An attacker could send crafted input to xrdb and cause it to run programs as root.
- x11-xserver-utils - X server utilities
Sebastian Krahmer discovered that the xrdb utility incorrectly filtered
crafted hostnames. An attacker could use this flaw with a malicious
DHCP server or with a remote xdmcp login and execute arbitrary code,
resulting in root privilege escalation.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make
all the necessary changes.