1
PublicDateAtUSN: 2011-10-03
2
Candidate: CVE-2010-4818
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4818
6
https://usn.ubuntu.com/usn/usn-1232-1
7
https://usn.ubuntu.com/usn/usn-1232-2
8
https://usn.ubuntu.com/usn/usn-1232-3
10
The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users
11
to cause a denial of service (server crash) and possibly execute arbitrary
12
code via (1) a crafted request that triggers a client swap in
13
glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the
14
screen field in a request to glx/glxcmds.c.
17
mdeslaur> A regression caused the fix to be removed from lucid. See
20
https://bugs.freedesktop.org/show_bug.cgi?id=28823
21
https://bugs.freedesktop.org/show_bug.cgi?id=33449 (regression)
22
https://bugs.freedesktop.org/show_bug.cgi?id=33324 (regression)
28
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=3f0d3f4d97bce75c1828635c322b6560a45a037f
29
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=ec9c97c6bf70b523bc500bd3adf62176f1bb33a4
30
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=6c69235a9dfc52e4b4e47630ff4bab1a820eb543
31
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=62319e8381ebd645ae36b25e5fc3c0e9b098387b
32
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=d9225b9602c85603ae616a7381c784f5cf5e811c
33
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=a883cf1545abd89bb2cadfa659718884b56fd234 (regression fix)
34
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=1137c11be0f82049d28024eaf963c6f76e0d4334 (regression fix)
35
upstream: http://cgit.freedesktop.org/xorg/xserver/commit/?id=402b329c3aa8ddbebaa1f593306a02d4cd6fed26 (regression fix)
36
upstream_xorg-server: needs-triage
37
hardy_xorg-server: ignored (reached end-of-life)
38
lucid_xorg-server: released (2:1.7.6-2ubuntu7.10)
39
maverick_xorg-server: released (2:1.9.0-0ubuntu7.5)
40
natty_xorg-server: not-affected (2:1.10.1-1ubuntu1.2)
41
oneiric_xorg-server: not-affected (2:1.10.4-1ubuntu4)
42
devel_xorg-server: not-affected (2:1.10.4-1ubuntu4)