Date: Fri, 13 Oct 2000 23:37:01 +0200 From: Matthieu Herrb <matthieu@LAAS.FR> Subject: Re: another Xlib buffer overflow To: BUGTRAQ@SECURITYFOCUS.COM You wrote (in your message from Friday 13) > > Vulnerable object: XFree 3.3.x Xlib (no data on 4.0.x); no mention of fix > in "security issues" page at www.xfree86.org. > It was fixed in XFree86 4.0. From the CHANGELOG: XFree86 3.9Nu (13 January 1999) [...] 2141. Fix some sun_path overflows in xtrans. -- Matthieu