Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2005:329-01
HistorySep 13, 2005 - 11:21 p.m.

XFree86 security update

2005-09-1323:21:44
CentOS Project
lists.centos.org
41

0.025 Low

EPSS

Percentile

90.0%

JSON

CentOS Errata and Security Advisory CESA-2005:329-01

XFree86 is an open source implementation of the X Window System. It
provides the basic low-level functionality that full-fledged graphical
user interfaces (GUIs) such as GNOME and KDE are designed upon.

Several integer overflow bugs were found in the way XFree86 parses pixmap
images. It is possible for a user to gain elevated privileges by loading a
specially crafted pixmap image. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2005-2495 to this issue.

Users of XFree86 should upgrade to these updated packages, which contain a
backported patch and are not vulnerable to this issue.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-September/074325.html

Affected packages:
XFree86
XFree86-100dpi-fonts
XFree86-75dpi-fonts
XFree86-ISO8859-15-100dpi-fonts
XFree86-ISO8859-15-75dpi-fonts
XFree86-ISO8859-2-100dpi-fonts
XFree86-ISO8859-2-75dpi-fonts
XFree86-ISO8859-9-100dpi-fonts
XFree86-ISO8859-9-75dpi-fonts
XFree86-Xnest
XFree86-Xvfb
XFree86-cyrillic-fonts
XFree86-devel
XFree86-doc
XFree86-libs
XFree86-tools
XFree86-twm
XFree86-xdm
XFree86-xf86cfg
XFree86-xfs

OSVersionArchitecturePackageVersionFilename
CentOS2i386xfree86-100dpi-fonts< 4.1.0-73.ELXFree86-100dpi-fonts-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86< 4.1.0-73.ELXFree86-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-75dpi-fonts< 4.1.0-73.ELXFree86-75dpi-fonts-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-cyrillic-fonts< 4.1.0-73.ELXFree86-cyrillic-fonts-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-devel< 4.1.0-73.ELXFree86-devel-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-doc< 4.1.0-73.ELXFree86-doc-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-iso8859-15-100dpi-fonts< 4.1.0-73.ELXFree86-ISO8859-15-100dpi-fonts-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-iso8859-15-75dpi-fonts< 4.1.0-73.ELXFree86-ISO8859-15-75dpi-fonts-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-iso8859-2-100dpi-fonts< 4.1.0-73.ELXFree86-ISO8859-2-100dpi-fonts-4.1.0-73.EL.i386.rpm
CentOS2i386xfree86-iso8859-2-75dpi-fonts< 4.1.0-73.ELXFree86-ISO8859-2-75dpi-fonts-4.1.0-73.EL.i386.rpm
Rows per page:
1-10 of 201

Related

redhat 3
suse 1
securityvulns 1
openvas 11
cve 1
cert 1
nessus 37
ubuntu 1
centos 2
gentoo 1
freebsd 1
slackware 1
cvelist 1
ubuntucve 1
debian 2
osv 1
redhat
redhat
(RHSA-2005:501) XFree86 security update
2005-09-15 00:00:00
(RHSA-2005:396) xorg-x11 security update
2005-09-13 00:00:00
(RHSA-2005:329) XFree86 security update
2005-09-12 00:00:00
suse
suse
remote command execution in XFree86-server,xorg-x11-server
2005-09-26 13:04:19
securityvulns
securityvulns
[Full-disclosure] [USN-182-1] X server vulnerability
2005-09-12 00:00:00
openvas
openvas
Slackware Advisory SSA:2005-269-02 X.Org pixmap overflow
2012-09-11 00:00:00
SLES9: Security update for XFree86-server
2009-10-10 00:00:00
SLES9: Security update for XFree86-Xvnc
2009-10-10 00:00:00
cve
cve
CVE-2005-2495
2005-09-15 20:03:00
cert
cert
Multiple X servers fail to properly allocate memory for large pixmaps
2005-09-13 00:00:00
nessus
nessus
RHEL 2.1 : XFree86 (RHSA-2005:329)
2005-09-13 00:00:00
CentOS 3 : XFree86 (CESA-2005:501)
2006-07-03 00:00:00
Fedora Core 4 : xorg-x11-6.8.2-37.FC4.48.1 (2005-894)
2005-09-17 00:00:00
ubuntu
ubuntu
X server vulnerability
2005-09-12 00:00:00
centos
centos
xorg security update
2005-09-13 18:53:55
XFree86 security update
2005-09-15 10:48:27
gentoo
gentoo
X.Org: Heap overflow in pixmap allocation
2005-09-12 00:00:00
freebsd
freebsd
X11 server -- pixmap allocation vulnerability
2005-09-12 00:00:00
slackware
slackware
X.Org pixmap overflow
2005-09-26 10:43:04
cvelist
cvelist
CVE-2005-2495
2005-09-15 04:00:00
ubuntucve
ubuntucve
CVE-2005-2495
2005-09-15 00:00:00
debian
debian
[SECURITY] [DSA 816-1] New XFree86 packages fix arbitrary code execution
2005-09-22 00:00:00
[SECURITY] [DSA 816-1] New XFree86 packages fix arbitrary code execution
2005-09-22 08:57:47
osv
osv
xfree86 - integer overflow
2005-09-19 00:00:00

0.025 Low

EPSS

Percentile

90.0%

JSON
Related for CESA-2005:329-01
redhat3suse1securityvulns1openvas11cve1cert1nessus37ubuntu1centos2gentoo1freebsd1slackware1cvelist1ubuntucve1debian2osv1