Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2010-4819

Published: 3 October 2011

The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "input sanitization flaw."

Priority

Medium

Status

Package Release Status
xorg-server
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid
Released (2:1.7.6-2ubuntu7.8)
maverick Not vulnerable
(2:1.9.0-0ubuntu7.3)
natty Not vulnerable
(2:1.10.1-1ubuntu1.2)
oneiric Not vulnerable
(2:1.10.4-1ubuntu4)
upstream Needs triage

Patches:
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=5725849a1b427cd4a72b84e57f211edb35838718
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=efcb63d0ce43f96d0ac02b6f4a480dfd2374fc84 (shut gcc up)