LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Security Week: April 21st, 2014
Linux Security Week: April 7th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Fedora Core 2 Update: xorg-x11-6.7.0-14 Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Fedora An integer overflow flaw was found in libXpm, which is used by some applications for loading of XPM images. An attacker could create a malicious XPM file that would execute arbitrary code if opened by a victim using an application linked to the vulnerable library.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-272
2005-03-29
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : xorg-x11
Version     : 6.7.0                      
Release     : 14                  
Summary     : The basic fonts, programs and docs for an X workstation.
Description :
X.org X11 is an open source implementation of the X Window System.  It
provides the basic low level functionality which full fledged
graphical user interfaces (GUIs) such as GNOME and KDE are designed
upon.

---------------------------------------------------------------------
Update Information:

An integer overflow flaw was found in libXpm, which is used by some
applications for loading of XPM images. An attacker could create a
malicious XPM file that would execute arbitrary code if opened by a victim
using an application linked to the vulnerable library. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2005-0605 to this issue.
---------------------------------------------------------------------
* Thu Mar 24 2005 Kristian Høgsberg  6.7.0-14

- Add XFree86-4.1.0-xpm-security-fix-CAN-2005-0605.patch (#150040).

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

600a0cfb0c9a9772da75c5652929518b  SRPMS/xorg-x11-6.7.0-14.src.rpm
825a43a427fe4f42ed37b17f18f45558  x86_64/xorg-x11-6.7.0-14.x86_64.rpm
b27a8d713eec80fce36e2f244eef0a2f  x86_64/xorg-x11-devel-6.7.0-14.x86_64.rpm
6275bf8618179e6eeea10feeef759bbb  x86_64/xorg-x11-font-utils-6.7.0-14.x86_64.rpm
89c8653ccb04e75510e74bc85508d7fd  x86_64/xorg-x11-xfs-6.7.0-14.x86_64.rpm
cf31406344a93fe433d23bfdcb0da81b  x86_64/xorg-x11-twm-6.7.0-14.x86_64.rpm
1cf2b9c77a87758430315feb848c48b9  x86_64/xorg-x11-xdm-6.7.0-14.x86_64.rpm
fadf7f5d595d9fcb611ec285435b961c  x86_64/xorg-x11-libs-6.7.0-14.x86_64.rpm
a070eccd4d418e14098030dffff0c859  x86_64/xorg-x11-libs-data-6.7.0-14.x86_64.rpm
e3a8a1f75a97820627be65bf3976a08f  x86_64/xorg-x11-base-fonts-6.7.0-14.x86_64.rpm
b9939cd88b4cc7aca4bfaf27b95e3674  x86_64/xorg-x11-truetype-fonts-6.7.0-14.x86_64.rpm
f6f33802011c13cb39d1e0b395870a47  x86_64/xorg-x11-syriac-fonts-6.7.0-14.x86_64.rpm
9b9b8064b4a18c0c8f4b70f09168bb29  x86_64/xorg-x11-75dpi-fonts-6.7.0-14.x86_64.rpm
7f3363d21561fb6cd6ca19bcc5f258a0  x86_64/xorg-x11-100dpi-fonts-6.7.0-14.x86_64.rpm
be4cf2103796bcdb13ba614498496f10  x86_64/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-14.x86_64.rpm
58f5345f28c3f95b5e966a894d75566b  x86_64/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-14.x86_64.rpm
61903949f372c4fdb24f067a7009fe53  x86_64/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-14.x86_64.rpm
08f9c2b87c56f9b8e4ace980dfddd3df  x86_64/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-14.x86_64.rpm
3bb47bb6bf4d3f0e445c5709c82320fd  x86_64/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-14.x86_64.rpm
f830609d16d830b5cc03b359e33cad80  x86_64/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-14.x86_64.rpm
17dfac76eb62313d2d6cb88f56982825  x86_64/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-14.x86_64.rpm
51297d1016839a60c058b3773a49fe89  x86_64/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-14.x86_64.rpm
c6525692b3052fa0f0000056b9985ed0  x86_64/xorg-x11-cyrillic-fonts-6.7.0-14.x86_64.rpm
2b16a602848c8145d78fc41dbb27e30c  x86_64/xorg-x11-doc-6.7.0-14.x86_64.rpm
6df6be39cadf75d56f05e08823ff5569  x86_64/xorg-x11-Xnest-6.7.0-14.x86_64.rpm
40298ae776b44605648aae8fc765d7a8  x86_64/xorg-x11-tools-6.7.0-14.x86_64.rpm
5a2e53f1ae2296ff3317bcb2899ac021  x86_64/xorg-x11-xauth-6.7.0-14.x86_64.rpm
dc536d4f899405eeebf55aefd0b69250  x86_64/xorg-x11-Mesa-libGL-6.7.0-14.x86_64.rpm
d6f0bfe66f978ec510320aa136e845f8  x86_64/xorg-x11-Mesa-libGLU-6.7.0-14.x86_64.rpm
a7090fa49b90b64d17b68fb8b34b0574  x86_64/xorg-x11-Xvfb-6.7.0-14.x86_64.rpm
f3f7f737769df12c9ecb3611d843493c  x86_64/xorg-x11-sdk-6.7.0-14.x86_64.rpm
09f987c885e0ab18c641b31ab0778eb0  x86_64/xorg-x11-libs-6.7.0-14.i386.rpm
4d8905737e62497664683b053e58f87e  x86_64/xorg-x11-libs-data-6.7.0-14.i386.rpm
54074a661b6889f91a29fb91c62a189e  x86_64/xorg-x11-Mesa-libGL-6.7.0-14.i386.rpm
30949ab6f8bf9427e32e841c37bac6e2  x86_64/xorg-x11-Mesa-libGLU-6.7.0-14.i386.rpm
4576076e43b32eb7d34fb9ff112c2ab6  i386/xorg-x11-6.7.0-14.i386.rpm
aa42939c5f62b2eb863c3b433eda091e  i386/xorg-x11-devel-6.7.0-14.i386.rpm
12758faeb79e52858b8cb963e829f7d1  i386/xorg-x11-font-utils-6.7.0-14.i386.rpm
e5e37ec4b840fd3c8e11bdffcd5a799f  i386/xorg-x11-xfs-6.7.0-14.i386.rpm
ae4a343bdeb63c559859d633fedc3720  i386/xorg-x11-twm-6.7.0-14.i386.rpm
9281ffb09a3c6c6387dd62fde5e6939f  i386/xorg-x11-xdm-6.7.0-14.i386.rpm
09f987c885e0ab18c641b31ab0778eb0  i386/xorg-x11-libs-6.7.0-14.i386.rpm
4d8905737e62497664683b053e58f87e  i386/xorg-x11-libs-data-6.7.0-14.i386.rpm
8f11ccc3a45ee547c408d29fb61c8d21  i386/xorg-x11-base-fonts-6.7.0-14.i386.rpm
6b1426acb8c1c89f7c02c10e1ef8a6f9  i386/xorg-x11-truetype-fonts-6.7.0-14.i386.rpm
287625bb4fa84f794ab0e6f2525598bb  i386/xorg-x11-syriac-fonts-6.7.0-14.i386.rpm
bb6740fa5b20fb389940b19fdd9d5cf6  i386/xorg-x11-75dpi-fonts-6.7.0-14.i386.rpm
f5014cfda408afc422be35be41c854bb  i386/xorg-x11-100dpi-fonts-6.7.0-14.i386.rpm
ac9eb026a651b64f15257870bc855b77  i386/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-14.i386.rpm
b8c3f6d33a83254c2c3dbe1746140254  i386/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-14.i386.rpm
401876c22190ad302fcbd2406b2195a6  i386/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-14.i386.rpm
0fe35cdc12d5efc451b83c6bee9badef  i386/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-14.i386.rpm
c1a35a47c2105d205aab91a6eb494ec1  i386/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-14.i386.rpm
24e129935a31acb375c52b2c67fa56ca  i386/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-14.i386.rpm
3c7922f8a8b2280bb29ffeeb3b83254d  i386/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-14.i386.rpm
eade863f16a383b6817fa211bafa0a63  i386/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-14.i386.rpm
508e852b7f0b06750769c6170d4aa7b1  i386/xorg-x11-cyrillic-fonts-6.7.0-14.i386.rpm
6a848de0e9d6c23cc13200e5b1e6c367  i386/xorg-x11-doc-6.7.0-14.i386.rpm
9799f497d482f759bcdca575c719784c  i386/xorg-x11-Xnest-6.7.0-14.i386.rpm
2ee2a3660f4d37cfeab7f0ef8b1dbeeb  i386/xorg-x11-tools-6.7.0-14.i386.rpm
8e9d284aa1fee22df6aad4675538a2ea  i386/xorg-x11-xauth-6.7.0-14.i386.rpm
54074a661b6889f91a29fb91c62a189e  i386/xorg-x11-Mesa-libGL-6.7.0-14.i386.rpm
30949ab6f8bf9427e32e841c37bac6e2  i386/xorg-x11-Mesa-libGLU-6.7.0-14.i386.rpm
8be650d47e7f34cc6b63b8e2321cf2eb  i386/xorg-x11-Xvfb-6.7.0-14.i386.rpm
41adbaea8de3dee2f6a2698a73d875ff  i386/xorg-x11-sdk-6.7.0-14.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
---------------------------------------------------------------------

--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list
 
< Prev   Next >
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.