Mandriva Linux Security Advisory – A flaw in OpenSSH prior to 4.7 prevented ssh from properly handling when an untrusted cookie could not be created and used a trusted X11 cookie instead, which could allow attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/61510/MDKSA-2007-236.txt
Source: https://packetstormsecurity.com/files/61510/Mandriva-Linux-Security-Advisory-2007.236.html