Joey Hess wrote: > * Attempt to stop X connection hijacking (sticky bit for /tmp/.X11-unix) > Note that this is only a short-term partial solution, and it is doesn't > help at all for some SYSV based OSs (like Solaris 2.x). This one at least is badly needed. Exploit scripts are already circulating. That said, I don't feel up to extracting specific security patches from the new release. I doubt anyone is :( Richard Braakman