Oval Definition:oval:com.redhat.rhsa:def:20150797
Revision Date:2015-04-10Version:637
Title:RHSA-2015:0797: xorg-x11-server security update (Moderate)
Description:X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

  • A buffer over-read flaw was found in the way the X.Org server handled XkbGetGeometry requests. A malicious, authorized client could use this flaw to disclose portions of the X.Org server memory, or cause the X.Org server to crash using a specially crafted XkbGetGeometry request. (CVE-2015-0255)

    This issue was discovered by Olivier Fourdan of Red Hat.

    All xorg-x11-server users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2015-0255
    RHSA-2015:0797
    RHSA-2015:0797-00
    RHSA-2015:0797-01
    Platform(s):Red Hat Enterprise Linux 6
    Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • xorg-x11-server-Xdmx is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xephyr is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-Xephyr is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xnest is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xorg is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-Xorg is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xvfb is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-common is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-common is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-devel is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-source is earlier than 0:1.15.0-26.el6_6
  • AND xorg-x11-server-source is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • xorg-x11-server-Xdmx is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-Xdmx is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xephyr is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-Xephyr is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xnest is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-Xnest is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xorg is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-Xorg is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-Xvfb is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-Xvfb is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-common is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-common is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-devel is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-devel is signed with Red Hat redhatrelease2 key
  • xorg-x11-server-source is earlier than 0:1.15.0-33.el7_1
  • AND xorg-x11-server-source is signed with Red Hat redhatrelease2 key
    • BACK