CVE-2010-1166

Name of the Vulnerable Software and Affected Versions X.Org X11R7.1

Description The issue is related to the fbComposite function in fbpict.c in the Render extension in the X server, which allows remote authenticated users to cause a denial of service, resulting in memory corruption and daemon crash, or possibly execute arbitrary code via a crafted request. This is due to an incorrect macro definition.

Recommendations For X.Org X11R7.1, consider disabling the Render extension as a temporary workaround until a patch is available. Restrict access to the X server to minimize the risk of exploitation.