Matthieu Herrb

**Name of the Vulnerable Software and Affected Versions** libX11 versions 1.0.2 through 1.0.3 **Description** The issue is related to a file descriptor leak in the Xinput module. This leak allows local users to read files specified by the `XCOMPOSEFILE` environment variable via the duplicate file descriptor. The leak occurs because the Xinput module opens a file for reading twice using the same file descriptor. **Recommendations** For libX11 versions 1.0.2 and 1.0.3, consider restricting access to the `XCOMPOSEFILE` environment variable to minimize the risk of exploitation. As a temporary workaround, avoid using the `XCOMPOSEFILE` environment variable until a patch is available.

**Name of the Vulnerable Software and Affected Versions** XFree86 versions prior to 1.0.9 xorg-x11 versions prior to 7.4 **Description** The vulnerability allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP or XDMCP message. This can lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation of the vulnerability can be carried out remotely. **Recommendations** For XFree86 versions prior to 1.0.9, update to version 1.0.9 or later. For xorg-x11 versions prior to 7.4, update to version 7.4 or later. As a temporary workaround, consider disabling the `xrdb.c` function in XFree86 until a patch is available. Restrict access to the vulnerable `xorg-x11` module to minimize the risk of exploitation. Avoid using the `hostname` parameter in the affected API endpoint until the issue is resolved.