Oval Definition:oval:com.redhat.rhsa:def:20080030
Revision Date:2008-03-20Version:640
Title:RHSA-2008:0030: xorg-x11 security update (Important)
Description:The xorg-x11 packages contain X.Org, an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

  • Two integer overflow flaws were found in the X.Org server's EVI and MIT-SHM modules. A malicious authorized client could exploit these issues to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-6429)

  • A heap based buffer overflow flaw was found in the way the X.Org server handled malformed font files. A malicious local user could exploit these issues to potentially execute arbitrary code with the privileges of the X.Org server. (CVE-2008-0006)

  • A memory corruption flaw was found in the X.Org server's XInput extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-6427)

  • An input validation flaw was found in the X.Org server's XFree86-Misc extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-5760)

  • An information disclosure flaw was found in the X.Org server's TOG-CUP extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially view arbitrary memory content within the X server's address space. (CVE-2007-6428)

  • An integer and heap overflow flaw were found in the X.Org font server, xfs. A user with the ability to connect to the font server could have been able to cause a denial of service (crash), or potentially execute arbitrary code with the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)

  • A flaw was found in the X.Org server's XC-SECURITY extension, that could have allowed a local user to verify the existence of an arbitrary file, even in directories that are not normally accessible to that user. (CVE-2007-5958)

    Users of xorg-x11 should upgrade to these updated packages, which contain backported patches to resolve these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2007-4568
    CVE-2007-4990
    CVE-2007-5760
    CVE-2007-5958
    CVE-2007-6427
    CVE-2007-6428
    CVE-2007-6429
    CVE-2008-0006
    RHSA-2008:0030
    RHSA-2008:0030-02
    RHSA-2008:0030-02
    Platform(s):Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • xorg-x11 is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11 is signed with Red Hat redhatrelease2 key
  • xorg-x11-Mesa-libGL is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-Mesa-libGL is signed with Red Hat redhatrelease2 key
  • xorg-x11-Mesa-libGLU is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-Mesa-libGLU is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xdmx is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xnest is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xvfb is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-deprecated-libs is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-deprecated-libs is signed with Red Hat redhatrelease2 key
  • xorg-x11-deprecated-libs-devel is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-deprecated-libs-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-devel is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-doc is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-doc is signed with Red Hat redhatrelease2 key
  • xorg-x11-font-utils is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-font-utils is signed with Red Hat redhatrelease2 key
  • xorg-x11-libs is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-libs is signed with Red Hat redhatrelease2 key
  • xorg-x11-sdk is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-sdk is signed with Red Hat redhatrelease2 key
  • xorg-x11-tools is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-tools is signed with Red Hat redhatrelease2 key
  • xorg-x11-twm is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-twm is signed with Red Hat redhatrelease2 key
  • xorg-x11-xauth is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-xauth is signed with Red Hat redhatrelease2 key
  • xorg-x11-xdm is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-xdm is signed with Red Hat redhatrelease2 key
  • xorg-x11-xfs is earlier than 0:6.8.2-1.EL.33.0.2
  • AND xorg-x11-xfs is signed with Red Hat redhatrelease2 key
    • BACK