Oval Definition:oval:com.redhat.rhsa:def:20070898
Revision Date:2007-09-19Version:636
Title:RHSA-2007:0898: xorg-x11 security update (Moderate)
Description:X.org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

  • A flaw was found in the way X.Org's composite extension handles 32 bit color depth windows while running in 16 bit color depth mode. If an X.org server has enabled the composite extension, it may be possible for a malicious authorized client to cause a denial of service (crash) or potentially execute arbitrary code with the privileges of the X.org server. (CVE-2007-4730)

    Please note this flaw can only be triggered when using a compositing window manager. Red Hat Enterprise Linux 4 does not ship with a compositing window manager.

    Users of X.org should upgrade to these updated packages, which contain a backported patch and are not vulnerable to these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2007-4730
    RHSA-2007:0898
    RHSA-2007:0898-02
    RHSA-2007:0898-02
    Platform(s):Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • xorg-x11 is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11 is signed with Red Hat redhatrelease2 key
  • xorg-x11-Mesa-libGL is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-Mesa-libGL is signed with Red Hat redhatrelease2 key
  • xorg-x11-Mesa-libGLU is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-Mesa-libGLU is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xdmx is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xnest is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xvfb is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-deprecated-libs is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-deprecated-libs is signed with Red Hat redhatrelease2 key
  • xorg-x11-deprecated-libs-devel is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-deprecated-libs-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-devel is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-doc is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-doc is signed with Red Hat redhatrelease2 key
  • xorg-x11-font-utils is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-font-utils is signed with Red Hat redhatrelease2 key
  • xorg-x11-libs is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-libs is signed with Red Hat redhatrelease2 key
  • xorg-x11-sdk is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-sdk is signed with Red Hat redhatrelease2 key
  • xorg-x11-tools is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-tools is signed with Red Hat redhatrelease2 key
  • xorg-x11-twm is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-twm is signed with Red Hat redhatrelease2 key
  • xorg-x11-xauth is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-xauth is signed with Red Hat redhatrelease2 key
  • xorg-x11-xdm is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-xdm is signed with Red Hat redhatrelease2 key
  • xorg-x11-xfs is earlier than 0:6.8.2-1.EL.31
  • AND xorg-x11-xfs is signed with Red Hat redhatrelease2 key
    • BACK