Oval Definition:oval:com.redhat.rhsa:def:20131426
Revision Date:2013-10-15Version:636
Title:RHSA-2013:1426: xorg-x11-server security update (Important)
Description:X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

  • A use-after-free flaw was found in the way the X.Org server handled ImageText requests. A malicious, authorized client could use this flaw to crash the X.Org server or, potentially, execute arbitrary code with root privileges. (CVE-2013-4396)

    Red Hat would like to thank the X.Org security team for reporting this issue. Upstream acknowledges Pedro Ribeiro as the original reporter.

    All xorg-x11-server users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2013-4396
    CVE-2013-4396
    RHSA-2013:1426
    RHSA-2013:1426-01
    RHSA-2013:1426-01
    Platform(s):Red Hat Enterprise Linux 5
    Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • xorg-x11-server-Xdmx is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xephyr is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xephyr is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xnest is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xorg is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xorg is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xvfb is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-common is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-common is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-devel is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-source is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-source is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • xorg-x11-server-Xdmx is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xephyr is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xephyr is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xnest is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xorg is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xorg is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xvfb is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xvnc-source is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xvnc-source is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-sdk is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-sdk is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND
  • xorg-x11-server-devel is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-common is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-common is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xdmx is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xnest is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-server is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-source is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-source is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xvfb is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xephyr is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xephyr is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xorg is earlier than 0:1.13.0-11.1.el6_4.2
  • AND xorg-x11-server-Xorg is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • xorg-x11-server-Xvnc-source is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xvnc-source is signed with Red Hat redhatrelease key
  • xorg-x11-server-Xdmx is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xdmx is signed with Red Hat redhatrelease key
  • xorg-x11-server-Xnest is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xnest is signed with Red Hat redhatrelease key
  • xorg-x11-server-sdk is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-sdk is signed with Red Hat redhatrelease key
  • xorg-x11-server is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server is signed with Red Hat redhatrelease key
  • xorg-x11-server-Xvfb is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xvfb is signed with Red Hat redhatrelease key
  • xorg-x11-server-Xorg is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xorg is signed with Red Hat redhatrelease key
  • xorg-x11-server-Xephyr is earlier than 0:1.1.1-48.101.el5_10.1
  • AND xorg-x11-server-Xephyr is signed with Red Hat redhatrelease key
    • BACK