version 1.19, 2018/10/09 15:12:03 |
version 1.20, 2018/10/25 23:17:08 |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
|
<li id="p020_xserver"> |
|
<font color="#009000"> |
|
<strong>020: SECURITY FIX: October 25, 2018</strong></font> |
|
<i>All architectures</i> |
|
<br> |
|
The Xorg X server incorrectly validates certain options, allowing arbitrary |
|
files to be overwritten. |
|
As an immediate (temporary) workaround, the Xorg binary can be disabled |
|
by running: <code>chmod u-s /usr/X11R6/bin/Xorg</code> |
|
<br> |
|
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.3/common/020_xserver.patch.sig"> |
|
A source code patch exists which remedies this problem.</a> |
|
<p> |
|
|
</ul> |
</ul> |
|
|
<hr> |
<hr> |