Oval Definition:oval:com.redhat.rhsa:def:20080503
Revision Date:2008-06-13Version:635
Title:RHSA-2008:0503: xorg-x11 security update (Important)
Description:The xorg-x11 packages contain X.Org, an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

  • An input validation flaw was discovered in X.org's Security and Record extensions. A malicious authorized client could exploit this issue to cause a denial of service (crash) or, potentially, execute arbitrary code with root privileges on the X.Org server. (CVE-2008-1377)

  • Multiple integer overflow flaws were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service (crash) or, potentially, execute arbitrary code with root privileges on the X.Org server. (CVE-2008-2360, CVE-2008-2361)

  • An input validation flaw was discovered in X.org's MIT-SHM extension. A client connected to the X.org server could read arbitrary server memory. This could result in the sensitive data of other users of the X.org server being disclosed. (CVE-2008-1379)

    Users of xorg-x11 should upgrade to these updated packages, which contain backported patches to resolve these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-1377
    CVE-2008-1379
    CVE-2008-2360
    CVE-2008-2361
    RHSA-2008:0503
    RHSA-2008:0503-01
    RHSA-2008:0503-01
    Platform(s):Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • xorg-x11 is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11 is signed with Red Hat redhatrelease2 key
  • xorg-x11-Mesa-libGL is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-Mesa-libGL is signed with Red Hat redhatrelease2 key
  • xorg-x11-Mesa-libGLU is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-Mesa-libGLU is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xdmx is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xnest is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-Xvfb is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-deprecated-libs is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-deprecated-libs is signed with Red Hat redhatrelease2 key
  • xorg-x11-deprecated-libs-devel is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-deprecated-libs-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-devel is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-doc is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-doc is signed with Red Hat redhatrelease2 key
  • xorg-x11-font-utils is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-font-utils is signed with Red Hat redhatrelease2 key
  • xorg-x11-libs is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-libs is signed with Red Hat redhatrelease2 key
  • xorg-x11-sdk is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-sdk is signed with Red Hat redhatrelease2 key
  • xorg-x11-tools is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-tools is signed with Red Hat redhatrelease2 key
  • xorg-x11-twm is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-twm is signed with Red Hat redhatrelease2 key
  • xorg-x11-xauth is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-xauth is signed with Red Hat redhatrelease2 key
  • xorg-x11-xdm is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-xdm is signed with Red Hat redhatrelease2 key
  • xorg-x11-xfs is earlier than 0:6.8.2-1.EL.33.0.4
  • AND xorg-x11-xfs is signed with Red Hat redhatrelease2 key
    • BACK