Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-4447HistoryAug 30, 2006 - 1:04 a.m.
CVE-2006-4447
2006-08-3001:04:00
Debian Security Bug Tracker
security-tracker.debian.org
9
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
25.1%
X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libx11 | < 2:1.0.0-7 | libx11_2:1.0.0-7_all.deb |
| Debian | 11 | all | libx11 | < 2:1.0.0-7 | libx11_2:1.0.0-7_all.deb |
| Debian | 10 | all | libx11 | < 2:1.0.0-7 | libx11_2:1.0.0-7_all.deb |
| Debian | 999 | all | libx11 | < 2:1.0.0-7 | libx11_2:1.0.0-7_all.deb |
| Debian | 13 | all | libx11 | < 2:1.0.0-7 | libx11_2:1.0.0-7_all.deb |
| Debian | 12 | all | xdm | < 1:1.0.5-1 | xdm_1:1.0.5-1_all.deb |
| Debian | 11 | all | xdm | < 1:1.0.5-1 | xdm_1:1.0.5-1_all.deb |
| Debian | 10 | all | xdm | < 1:1.0.5-1 | xdm_1:1.0.5-1_all.deb |
| Debian | 999 | all | xdm | < 1:1.0.5-1 | xdm_1:1.0.5-1_all.deb |
| Debian | 13 | all | xdm | < 1:1.0.5-1 | xdm_1:1.0.5-1_all.deb |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200608-25 (xorg-x11,xorg-server,xtrans,xload,xinit,xterm,xf86dga,xdm,libX11)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200608-25 (xorg-x11, xorg-server, xtrans, xload, xinit, xterm, xf86dga, xdm, libX11)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200704-22 (BEAST)
2008-09-24 00:00:00
cert
cert
X.Org fails to check for setuid failure on Linux systems
2006-10-25 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : xorg-x11 (MDKSA-2006:160)
2006-12-16 00:00:00
GLSA-200608-25 : X.org and some X.org libraries: Local privilege escalations
2006-08-30 00:00:00
GLSA-200704-22 : BEAST: Denial of Service
2007-04-30 00:00:00
ubuntucve
ubuntucve
CVE-2006-4447
2006-08-30 00:00:00
gentoo
gentoo
X.org and some X.org libraries: Local privilege escalations
2006-08-28 00:00:00
BEAST: Denial of service
2007-04-27 00:00:00
redhatcve
redhatcve
CVE-2006-4447
2015-10-30 09:22:41
cve
cve
CVE-2006-4447
2006-08-30 01:04:00
securityvulns
securityvulns
[ GLSA 200704-22 ] BEAST: Denial of Service
2007-04-29 00:00:00
osv
osv
xfree86
2006-10-09 00:00:00
debian
debian
[SECURITY] [DSA 1193-1] New XFree86 packages fix several vulnerabilities
2006-10-09 00:00:00
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
25.1%
Related for DEBIANCVE:CVE-2006-4447