On Mon, Sep 26, 2005 at 05:27:46PM +0200, Peter Czanik wrote:
Hello, I just received a security advisory about X.org:
Package: XFree86-server,xorg-x11-server Announcement ID: SUSE-SA:2005:056 Date: Mon, 26 Sep 2005 14:00:00 +0000 Affected Products: SUSE LINUX 9.0, 9.1, 9.2, 9.3 SUSE Linux Desktop 1.0 SUSE Linux Enterprise Server 8, 9 Novell Linux Desktop 9 Vulnerability Type: remote command execution Severity (1-10): 9
It seems to have pretty serious severty. Question: is the fix already in openSUSE 10.0 RC1? If not, will it be available before 6h October? Or it's better, if I downgrade back to 9.3 or don't use X?
It is in openSUSE 10.0 RC2 and in the GA version. So it will be available on October 6th. If you are just using the machine locally there should be no real problem. In retrospect severity 9 might be too high. Ciao, Marcus