A vulnerability has been identified in X.Org X11, which could be exploited by attackers to execute arbitrary commands. This flaw is due to a buffer overflow error in the XRender extension code that does not properly handle malformed "XRenderCompositeTriStrip" or "XRenderCompositeTriFan" requests, which could be exploited by malicious clients to compromise a vulnerable X server.
X.Org Server X11R7.0
X.Org Server X11R6.8.x
X.Org Server X11R6.9.0
Arbitrary command execution
Patch for X.Org Server X11R7.0 :
Patch for X.Org Server X11R6.9.0 :
Patch for X.Org Server X11R6.8.2 :