VYPR
Unrated severityNVD Advisory· Published Jul 3, 2012· Updated Jun 16, 2026

CVE-2011-4028

CVE-2011-4028

Description

The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Xorg/Xserver3 versions
    cpe:2.3:a:x.org:x_server:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:x.org:x_server:*:*:*:*:*:*:*:*range: <=1.11.1
    • cpe:2.3:a:x.org:x_server:1.11.0:*:*:*:*:*:*:*
    • (no CPE)range: <1.11.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.