User: Password:
|
|
Subscribe / Log in / New account

Slackware alert SSA:2007-066-02 (x11)

From:  Slackware Security Team <security@slackware.com>
To:  slackware-security@slackware.com
Subject:  [slackware-security] x11 (SSA:2007-066-02)
Date:  Wed, 7 Mar 2007 18:36:15 -0800 (PST)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] x11 (SSA:2007-066-02) New x11 packages are available for Slackware 10.2 and 11.0. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6101 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6102 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6103 Here are the details from the Slackware 11.0 ChangeLog: +--------------------------+ x/x11-6.9.0-i486-12_slack11.0.tgz: Patched. This update fixes overflows in the dbe and render extensions. This could possibly be exploited to overwrite parts of memory, possibly allowing malicious code to execute, or (more likely) causing X to crash. For information about some of the security fixes, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6101 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6102 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6103 +--------------------------+ Where to find the new packages: +-----------------------------+ HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading from ftp.slackware.com. Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating additional FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you. Updated package for Slackware 10.2: ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patc... Updated package for Slackware 11.0: ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patc... MD5 signatures: +-------------+ Slackware 10.2 package: f7f193b138303d0b04c72bd8b89d6947 x11-6.8.2-i486-8_slack10.2.tgz Slackware 11.0 package: 1e5e912cf9133cdf8825906f908bec6a x11-6.9.0-i486-12_slack11.0.tgz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg x11-6.9.0-i486-12_slack11.0.tgz +-----+ Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. | +------------------------------------------------------------------------+ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFF72mtakRjwEAQIjMRAtzPAJsGFvfj42G0XG7L5dJH5aDFJ6QtywCgk42A 9VrlUw5fRyApsNBUj1yW1YE= =WGyu -----END PGP SIGNATURE-----


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds