|
|
Subscribe / Log in / New account

Scientific Linux alert SL-xorg-20110811 (xorg-x11)



From:
    	      Troy Dawson <dawson@fnal.gov> 


To:
    	      "scientific-linux-errata@fnal.gov" <scientific-linux-errata@fnal.gov> 


Subject:
    	      Security ERRATA Important: xorg-x11 on SL4.x i386/x86_64 


Date:
    	      Mon, 15 Aug 2011 13:20:33 -0500


Message-ID:
    	      <4E496371.8010109@fnal.gov>



Synopsis:    Important: xorg-x11 security update
Issue Date:  2011-08-11
CVE Numbers: CVE-2011-2895
              CVE-2011-2895


X.Org is an open source implementation of the X Window System. It 
provides the basic low-level functionality that full-fledged graphical 
user interfaces are designed upon. These xorg-x11 packages also provide 
the X.Org libXfont runtime library.

A buffer overflow flaw was found in the way the libXfont library, used 
by the X.Org server, handled malformed font files compressed using UNIX
compress. A malicious, local user could exploit this issue to 
potentially execute arbitrary code with the privileges of the X.Org 
server. (CVE-2011-2895)

Users of xorg-x11 should upgrade to these updated packages, which 
contain a backported patch to resolve this issue. All running X.Org 
server instances must be restarted for the update to take effect.

SL4:
   i386
      xorg-x11-6.8.2-1.EL.69.i386.rpm
      xorg-x11-deprecated-libs-6.8.2-1.EL.69.i386.rpm
      xorg-x11-deprecated-libs-devel-6.8.2-1.EL.69.i386.rpm
      xorg-x11-devel-6.8.2-1.EL.69.i386.rpm
      xorg-x11-doc-6.8.2-1.EL.69.i386.rpm
      xorg-x11-font-utils-6.8.2-1.EL.69.i386.rpm
      xorg-x11-libs-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Mesa-libGL-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Mesa-libGLU-6.8.2-1.EL.69.i386.rpm
      xorg-x11-sdk-6.8.2-1.EL.69.i386.rpm
      xorg-x11-tools-6.8.2-1.EL.69.i386.rpm
      xorg-x11-twm-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Xvfb-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Xnest-6.8.2-1.EL.69.i386.rpm
      xorg-x11-xfs-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Xdmx-6.8.2-1.EL.69.i386.rpm
      xorg-x11-xdm-6.8.2-1.EL.69.i386.rpm
      xorg-x11-xauth-6.8.2-1.EL.69.i386.rpm
   x86_64
      xorg-x11-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-deprecated-libs-6.8.2-1.EL.69.i386.rpm
      xorg-x11-deprecated-libs-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-deprecated-libs-devel-6.8.2-1.EL.69.i386.rpm
      xorg-x11-deprecated-libs-devel-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-devel-6.8.2-1.EL.69.i386.rpm
      xorg-x11-devel-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-doc-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-font-utils-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-libs-6.8.2-1.EL.69.i386.rpm
      xorg-x11-libs-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-Mesa-libGL-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Mesa-libGL-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-Mesa-libGLU-6.8.2-1.EL.69.i386.rpm
      xorg-x11-Mesa-libGLU-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-sdk-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-tools-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-twm-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-xauth-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-xdm-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-Xdmx-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-xfs-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-Xnest-6.8.2-1.EL.69.x86_64.rpm
      xorg-x11-Xvfb-6.8.2-1.EL.69.x86_64.rpm

- Scientific Linux Development Team
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds