[Xquartz-dev] x.org hole
nicolas bats
sl1200mk2 at gmail.com
Thu Oct 25 21:58:16 PDT 2018
ok Ken,
thank you for your answer.
I'm not doing odd things with XQuartz :)
best regards,
Nicolas
Le ven. 26 oct. 2018 à 06:21, Ken Thomases <ken at codeweavers.com> a écrit :
> On Oct 25, 2018, at 9:31 PM, nicolas bats <sl1200mk2 at gmail.com> wrote:
>
>
> Hi,
> https://lists.x.org/archives/xorg-announce/2018-October/002927.html
>
> are we impacted by this?
>
>
> No, unless you're doing something very odd.
>
> The vulnerability only affects systems where the X server is configured so
> that it has root privileges even when run by a non-privileged user.
> XQuartz is not normally configured that way, or with any unusual
> privileges. It just runs in your normal user account with your normal
> privileges.
>
> Regards,
> Ken
>
>
> _______________________________________________
> Xquartz-dev mailing list
> Xquartz-dev at lists.macosforge.org
> https://lists.macosforge.org/mailman/listinfo/xquartz-dev
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.macosforge.org/pipermail/xquartz-dev/attachments/20181026/06bcd3b8/attachment.html>
More information about the Xquartz-dev
mailing list