Oval Definition:	oval:org.mitre.oval:def:21810
Revision Date: 2014-05-26 Version: 33 Title: ELSA-2008:0504: xorg-x11-server security update (Important) Description: Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2008-1377 CVE-2008-1379 CVE-2008-2360 CVE-2008-2361 CVE-2008-2362 ELSA-2008:0504-01 Platform(s): Oracle Linux 5 Product(s): xorg-x11-server Definition Synopsis Oracle Linux 5.x AND rpm test xorg-x11-server-Xephyr is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server-Xdmx is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server-Xorg is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server-Xvfb is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server-randr-source is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server-sdk is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server is earlier than 0:1.1.1-48.41.el5_2.1 OR xorg-x11-server-Xnest is earlier than 0:1.1.1-48.41.el5_2.1
BACK