The XMir Security Issue Should Now Be Resolved

Articles & Reviews
News Archive
Forums
Premium
Categories

Computers GPUs / Graphics Cards Linux Gaming Memory Motherboards CPUs / Processors Software Storage Operating Systems Peripherals

The XMir Security Issue Should Now Be Resolved

Written by Michael Larabel in Ubuntu on 23 August 2013 at 05:11 PM EDT. 13 Comments

Yesterday we passed along news of an XMir security issue where using Canonical's X11 transition layer in communicating with the Mir display server, when performing a VT switch the XMir session can still read input from devices. Fortunately, this issue looks to now be resolved.

This XMir security issue is rather pressing since when doing a VT switch, the XMir session could still read usernames/passwords and other information when logging into a virtual terminal.

With Mir's revision 1003 as of hours ago, focus notifications are now sent to the client that should workaround this security issue. Expect new Mir packages to appear in the Ubuntu 13.10 repository in due time. We're also waiting on more Mir features to land ahead of the Ubuntu 13.10 feature freeze next week.

13 Comments

Ubuntu 21.04 Released With Wayland By Default, New Dark Theme

Ubuntu 21.04 Testing Week Continues For Taming The Hirsute Hippo

Ubuntu 21.04 Beta Released For This Linux 5.11 Powered Update With Wayland By Default

Canonical Releases "Ubuntu on Windows Community Preview"

Ubuntu Figuring Out Whether To FSCK Its File-Systems At Boot

About The Author

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com.