User: Password:
|
|
Subscribe / Log in / New account

rPath alert rPSA-2006-0157-1 (x11)

From:  "Justin M. Forbes" <jmforbes@rpath.com>
To:  security-announce@lists.rpath.com, update-announce@lists.rpath.com
Subject:  rPSA-2006-0157-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs
Date:  Fri, 25 Aug 2006 00:14:26 -0400
Cc:  full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com, lwn@lwn.net

rPath Security Advisory: 2006-0157-1 Published: 2006-08-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Local Deterministic Vulnerability Updated Versions: xorg-x11=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1 xorg-x11-fonts=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1 xorg-x11-tools=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1 xorg-x11-xfs=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-200... https://issues.rpath.com/browse/RPL-596 https://bugs.freedesktop.org/show_bug.cgi?id=7535 Description: Previous versions of the xorg-x11 package have weaknesses parsing fonts, related to the freetype vulnerabilities described in the rPSA-2006-0100-2 advisory. These weaknesses are known to allow at least a denial of service attack, and may allow executing arbitrary code as the root user. After updating, it will be necessary to restart the X server in order for the update to take effect.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds