BugTraq
The (in)security of Xorg and DRI Dec 14 2006 12:40AM
Darren Reed (avalon caligula anu edu au) (2 replies)
Re: The (in)security of Xorg and DRI Dec 26 2006 11:20PM
Pavel Kankovsky (peak argo troja mff cuni cz)
On Thu, 14 Dec 2006, Darren Reed wrote:

> In recent discussion, the topic of the Xorg server being a huge
> security vulnerability because of its DRI model has come up.
>
> The problem being that you have user space code communicating
> with chips in the system and being able to control DMA and what
> goes which way on the system bus...

Afaik, kernel DRM (*) drivers are supposed (**) not to provide direct
control over unsafe features of the hardware (***).

(*) Direct Rendering Manager.
(**) The "strength of function" is, of course, a different question.
(***) See <http://dri.sourceforge.net/doc/security_low_level.html>

--Pavel Kankovsky aka Peak [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."

[ reply ]
Re: The (in)security of Xorg and DRI Dec 15 2006 02:44PM
Nicolas RUFF (nicolas ruff gmail com) (2 replies)
Re: The (in)security of Xorg and DRI Dec 18 2006 05:33AM
Darren Reed (avalon caligula anu edu au)
Re: The (in)security of Xorg and DRI Dec 17 2006 03:39PM
Darren Reed (avalon caligula anu edu au)


 

Privacy Statement
Copyright 2010, SecurityFocus