Wind River Support Network

HomeDefectsLIN5-14139
Fixed

LIN5-14139 : Security Advisory - x.org-xserver - CVE-2013-1940

Created: Jun 2, 2013    Updated: Dec 19, 2017
Resolved Date: Jun 23, 2014
Previous ID: LIN3-20265
Found In Version: 5.0
Fix Version: 5.0.1.16
Severity: Low
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1940

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online