ID A5F667DB-7596-11DC-8B7A-0019B944B34E Type freebsd Reporter FreeBSD Modified 2007-10-02T00:00:00
Description
Matthieu Herrb reports:
Problem Description:
Several vulnerabilities have been identified in xfs, the X font
server. The QueryXBitmaps and QueryXExtents protocol requests
suffer from lack of validation of their 'length' parameters.
Impact:
On most modern systems, the font server is accessible only for
local clients and runs with reduced privileges, but on some
systems it may still be accessible from remote clients and
possibly running with root privileges, creating an opportunity
for remote privilege escalation.
{"id": "A5F667DB-7596-11DC-8B7A-0019B944B34E", "bulletinFamily": "unix", "title": "xfs -- multiple vulnerabilities", "description": "\nMatthieu Herrb reports:\n\nProblem Description:\nSeveral vulnerabilities have been identified in xfs, the X font\n\t server. The QueryXBitmaps and QueryXExtents protocol requests\n\t suffer from lack of validation of their 'length' parameters.\nImpact:\nOn most modern systems, the font server is accessible only for\n\t local clients and runs with reduced privileges, but on some\n\t systems it may still be accessible from remote clients and\n\t possibly running with root privileges, creating an opportunity\n\t for remote privilege escalation.\n\n", "published": "2007-10-02T00:00:00", "modified": "2007-10-02T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://vuxml.freebsd.org/freebsd/a5f667db-7596-11dc-8b7a-0019b944b34e.html", "reporter": "FreeBSD", "references": ["http://lists.freedesktop.org/archives/xorg/2007-October/028899.html"], "cvelist": ["CVE-2007-4568"], "type": "freebsd", "lastseen": "2018-08-31T01:15:39", "history": [{"bulletin": {"affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "xfs", "packageVersion": "1.0.5,1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2007-4568"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "\nMatthieu Herrb reports:\n\nProblem Description:\nSeveral vulnerabilities have been identified in xfs, the X font\n\t server. The QueryXBitmaps and QueryXExtents protocol requests\n\t suffer from lack of validation of their 'length' parameters.\nImpact:\nOn most modern systems, the font server is accessible only for\n\t local clients and runs with reduced privileges, but on some\n\t systems it may still be accessible from remote clients and\n\t possibly running with root privileges, creating an opportunity\n\t for remote privilege escalation.\n\n", "edition": 2, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "051b43b1a6d7f332c2e0d7424e38a1c17888e1dbc374c45ce47e547c6eac6f51", "hashmap": [{"hash": "584f761560cf0db51558446f861f9197", "key": "cvelist"}, {"hash": "7eb638d292bb764d9d440b62bef57ad4", "key": "references"}, {"hash": "02af2582e3c537ffe27eea87035dfa57", "key": "affectedPackage"}, {"hash": "954aba9ee2dcb410a4a9ae2a774bb583", "key": "description"}, {"hash": "a3dc630729e463135f4e608954fa6e19", "key": "reporter"}, {"hash": "bd073f33bb81c7fce025c015b6293b0c", "key": "modified"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "1527e888767cdce15d200b870b39cfd0", "key": "type"}, {"hash": "221f3c7b8cf932dae1408994adc8fe46", "key": "href"}, {"hash": "84a107d98996455dc821cdee7810d9b1", "key": "title"}, {"hash": "bd073f33bb81c7fce025c015b6293b0c", "key": "published"}], "history": [], "href": "https://vuxml.freebsd.org/freebsd/a5f667db-7596-11dc-8b7a-0019b944b34e.html", "id": "A5F667DB-7596-11DC-8B7A-0019B944B34E", "lastseen": "2018-08-30T19:15:51", "modified": "2007-10-02T00:00:00", "objectVersion": "1.3", "published": "2007-10-02T00:00:00", "references": ["http://lists.freedesktop.org/archives/xorg/2007-October/028899.html"], "reporter": "FreeBSD", "title": "xfs -- multiple vulnerabilities", "type": "freebsd", "viewCount": 1}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T19:15:51"}, {"bulletin": {"affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "xfs", "packageVersion": "1.0.5,1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2007-4568"], "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "\nMatthieu Herrb reports:\n\nProblem Description:\nSeveral vulnerabilities have been identified in xfs, the X font\n\t server. The QueryXBitmaps and QueryXExtents protocol requests\n\t suffer from lack of validation of their 'length' parameters.\nImpact:\nOn most modern systems, the font server is accessible only for\n\t local clients and runs with reduced privileges, but on some\n\t systems it may still be accessible from remote clients and\n\t possibly running with root privileges, creating an opportunity\n\t for remote privilege escalation.\n\n", "edition": 1, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "3ee42b92134c9b7194e3f8481e1f73b2453a732089948795bc5d8af95b03b44e", "hashmap": [{"hash": "584f761560cf0db51558446f861f9197", "key": "cvelist"}, {"hash": "7eb638d292bb764d9d440b62bef57ad4", "key": "references"}, {"hash": "02af2582e3c537ffe27eea87035dfa57", "key": "affectedPackage"}, {"hash": "954aba9ee2dcb410a4a9ae2a774bb583", "key": "description"}, {"hash": "a3dc630729e463135f4e608954fa6e19", "key": "reporter"}, {"hash": "bd073f33bb81c7fce025c015b6293b0c", "key": "modified"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "1527e888767cdce15d200b870b39cfd0", "key": "type"}, {"hash": "221f3c7b8cf932dae1408994adc8fe46", "key": "href"}, {"hash": "737e2591b537c46d1ca7ce6f0cea5cb9", "key": "cvss"}, {"hash": "84a107d98996455dc821cdee7810d9b1", "key": "title"}, {"hash": "bd073f33bb81c7fce025c015b6293b0c", "key": "published"}], "history": [], "href": "https://vuxml.freebsd.org/freebsd/a5f667db-7596-11dc-8b7a-0019b944b34e.html", "id": "A5F667DB-7596-11DC-8B7A-0019B944B34E", "lastseen": "2016-09-26T17:25:00", "modified": "2007-10-02T00:00:00", "objectVersion": "1.2", "published": "2007-10-02T00:00:00", "references": ["http://lists.freedesktop.org/archives/xorg/2007-October/028899.html"], "reporter": "FreeBSD", "title": "xfs -- multiple vulnerabilities", "type": "freebsd", "viewCount": 1}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2016-09-26T17:25:00"}], "edition": 3, "hashmap": [{"key": "affectedPackage", "hash": "02af2582e3c537ffe27eea87035dfa57"}, {"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "584f761560cf0db51558446f861f9197"}, {"key": "cvss", "hash": "737e2591b537c46d1ca7ce6f0cea5cb9"}, {"key": "description", "hash": "954aba9ee2dcb410a4a9ae2a774bb583"}, {"key": "href", "hash": "221f3c7b8cf932dae1408994adc8fe46"}, {"key": "modified", "hash": "bd073f33bb81c7fce025c015b6293b0c"}, {"key": "published", "hash": "bd073f33bb81c7fce025c015b6293b0c"}, {"key": "references", "hash": "7eb638d292bb764d9d440b62bef57ad4"}, {"key": "reporter", "hash": "a3dc630729e463135f4e608954fa6e19"}, {"key": "title", "hash": "84a107d98996455dc821cdee7810d9b1"}, {"key": "type", "hash": "1527e888767cdce15d200b870b39cfd0"}], "hash": "3ee42b92134c9b7194e3f8481e1f73b2453a732089948795bc5d8af95b03b44e", "viewCount": 2, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-4568"]}, {"type": "debian", "idList": ["DEBIAN:DSA-1385-1:61CE7"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_A5F667DB759611DC8B7A0019B944B34E.NASL", "DEBIAN_DSA-1385.NASL", "MANDRAKE_MDKSA-2007-210.NASL", "FEDORA_2007-4263.NASL", "SUSE_XORG-X11-4485.NASL", "GENTOO_GLSA-200710-11.NASL", "CENTOS_RHSA-2008-0029.NASL", "ORACLELINUX_ELSA-2008-0030.NASL", "CENTOS_RHSA-2008-0030.NASL", "SL_20080117_XORG_X11_ON_SL4_X.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:58787", "OPENVAS:830081", "OPENVAS:861213", "OPENVAS:1361412562310830081", "OPENVAS:58672", "OPENVAS:850077", "OPENVAS:870070", "OPENVAS:880075", "OPENVAS:880113", "OPENVAS:1361412562310880013"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:18121", "SECURITYVULNS:VULN:8214"]}, {"type": "osvdb", "idList": ["OSVDB:37721"]}, {"type": "gentoo", "idList": ["GLSA-200710-11"]}, {"type": "suse", "idList": ["SUSE-SA:2007:054"]}, {"type": "oraclelinux", "idList": ["ELSA-2008-0029", "ELSA-2008-0030"]}, {"type": "centos", "idList": ["CESA-2008:0030", "CESA-2008:0029-01", "CESA-2008:0029"]}, {"type": "redhat", "idList": ["RHSA-2008:0029", "RHSA-2008:0030"]}], "modified": "2018-08-31T01:15:39"}, "vulnersScore": 7.2}, "objectVersion": "1.3", "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "xfs", "packageVersion": "1.0.5,1"}]}
{"cve": [{"lastseen": "2018-10-16T10:51:37", "bulletinFamily": "NVD", "description": "Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values, which triggers a heap-based buffer overflow.", "modified": "2018-10-15T17:36:11", "published": "2007-10-05T17:17:00", "id": "CVE-2007-4568", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-4568", "title": "CVE-2007-4568", "type": "cve", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-16T22:14:12", "bulletinFamily": "unix", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 1385-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nOctober 9th, 2007 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xfs\nVulnerability : several\nProblem-Type : local(remote)\nDebian-specific: no\nCVE ID : CVE-2007-4568\n\nSean Larsson discovered that two code paths inside the X Font Server\nhandle integer values insecurely, which may lead to the execution of\narbitrary code.\n\nFor the oldstable distribution (sarge) this problem has been fixed in\nversion 4.3.0.dfsg.1-14sarge5 of xfree86. Packages for m68k are not\nyet available. They will be provided later. \n\nFor the stable distribution (etch) this problem has been fixed in\nversion 1.0.1-7.\n\nFor the unstable distribution (sid) this problem has been fixed in\nversion 1.0.5-1.\n\nWe recommend that you upgrade your xfs packages.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\nDebian GNU/Linux 3.1 alias sarge\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xfree86/xfree86_4.3.0.dfsg.1-14sarge5.dsc\n Size/MD5 checksum: 2642 002e212fb0929f6e2ff5318380b077f9\n http://security.debian.org/pool/updates/main/x/xfree86/xfree86_4.3.0.dfsg.1-14sarge5.diff.gz\n Size/MD5 checksum: 3701248 17b023c976a61f30192c17f2c0a39dc1\n http://security.debian.org/pool/updates/main/x/xfree86/xfree86_4.3.0.dfsg.1.orig.tar.gz\n Size/MD5 checksum: 59123696 8e6990288c8f1a1d1e03f7c36d7185ee\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/x/xfree86/pm-dev_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 159592 ed4a89083b0a60c4f6f3c72ed51e95b3\n http://security.debian.org/pool/updates/main/x/xfree86/x-dev_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 216624 0c5307cfe5703bc47e89b5adfed3967d\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 158888 d103a0b47c4a57f41bab33160afd9d5e\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-100dpi-transcoded_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 8194298 15f1d4ffcab256336197c6ed5348d43c\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-100dpi_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 4363224 af5c1b5eefd907fba72cbc2220a4f633\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-75dpi-transcoded_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 7072034 5841eaf112dc2c4ded1c4bd00e4a6177\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-75dpi_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 3841048 60ca379a6a58852142a93b71a947867c\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-base-transcoded_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 1203798 797b48c747cc2238a1726369ac70b91e\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-base_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 5490720 7ea7811ef60a478bf06ac32a93b321c5\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-cyrillic_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 541330 31cf5d6f0f83e8c27cb6bbe5de2bc4e5\n http://security.debian.org/pool/updates/main/x/xfree86/xfonts-scalable_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 901146 ebd7898718f16281ddae08981af90665\n http://security.debian.org/pool/updates/main/x/xfree86/xfree86-common_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 815754 e9f578e023de27dcec9fbec93992b5b7\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 158736 f1e025279abb74d564d917a3a516b555\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 158750 3aae71d7d585fcd2a8cfd156911accfb\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-data_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 907010 6efbfd3ce9cf90302b6d0682822519ba\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 158802 d1fd077e34a2c9012dc18778f7cdb701\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 158804 d8404ddda3d7687df8038d10f0852670\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 158708 42be84f41547296ba6d080bffaabb96e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 426874 277a8b1e403fded2b56f1a60ad5bf264\n http://security.debian.org/pool/updates/main/x/xfree86/xspecs_4.3.0.dfsg.1-14sarge5_all.deb\n Size/MD5 checksum: 5836160 e6b9c4cbecbb2ca3436b0ed7e25f9438\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 285090 71d4f2a5389c1b1b44ca607c94acafe1\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 441266 83cd1be6f6b3bfe99d3187a3249fc9d3\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 313550 d949f6cfffab290ae0e67566408e9ff8\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 822320 b497c665f82ba310b3bcdda5b2d38257\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 230694 16c93b2a0d2cc6387581ca497c27379d\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 210092 7415c89a51a3765557be2571e5f698e7\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 295612 3a25df81965ef4c3a89ab5e9593996ab\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 184608 48370cf5372121dfbcf65f2ab9318267\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 185010 d653ed18a8b8483ad02a7d672bd26765\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 210054 5df24947689cbada8f94733809f12fe0\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 816208 08b40404180349fcee28d2c256cae75b\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 9805130 5f746df0d9a2aae2bcc6963a19c7b5ec\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1576392 303c927ec45bb4fde5a1eec49f0959da\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 317814 cd167376b71e70b131a1b3ac5c56fe3d\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 934192 afa87a72a27cd8eb876deb6945934bc2\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 522950 6e6426e01e9632083ef216cba6d7cc63\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 382864 62ba62523e03ab4879b2da892de8457a\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1100748 358fa5188889ce8fa311d4fda80db42d\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 522872 91396526dbfaa86a2314c740ec96eb20\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 265216 6fb77dcee56a6aa268db5df6aed2871f\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 196594 ed97e676c15869b6cf8eba2bab625ab5\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 522470 b981e0677f20623a75e95fb1bb051249\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 195810 9a76679a80cc6739ce029fd044b3d68a\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 481186 e50acad61b421c2be31bc3a79077576a\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 240954 91bf33d54a99a4c7c9d9615c7db0205d\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 186410 b13386680bcfd62be3fac2fe7f5271a3\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1182884 bf727b1d79396c142bd2188d702d0a93\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 245072 348d4be52b460b59fd6ba94585ec8e29\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 219884 8a01255bd3bf75573bbdd81e29ac0511\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 680276 85079038e4051ee3862fb33d76101c7c\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 164882 ba155d3f95ae7ccdc3a1f9be51c37538\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 172760 e789898282eea10dc66fed34a1cbadb6\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 210290 38c5b0103f2bed2837c9713d09c29030\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 188030 6509ce398e87c7c32ec7268d38d1df3b\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 183170 db9cbbcab5d1c840f626df27dc5789d6\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 576212 99f8d8e2e0e45a361568a0e1e662b7cd\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 212266 44b5d9e8408a907890243e25a6aa2daf\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 204626 3878ca8338fd7efaf0e23aa42041ce64\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 253944 177362f4c47cf8ed1a33e0ad06befedc\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 173516 370f0531e21c2b59ae92d6f175ba1be2\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 173072 073c75430d025361e170f89d160dd344\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 203240 610cacc86e435970a10064a099081b77\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 713390 d7727b0ec1bc96dd7de05d17010dbba4\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 361306 44b8a047c722a12596f1e887182f56a0\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1587234 43fafe72db5174604f43e452fc9c094b\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 191906 49b5250bc584060a1083ee93e6d15858\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 184542 94479847420a463645aa9a9e0348b0a7\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 412076 6cb41a34b8577948a02dd607b2285e03\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 176582 880c5f027b556d8d2220658753ee92ee\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 178046 b5916b4a091e8452cd80c61b07a955d1\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 241658 0a4f0a936d5edd6f3a344cec80148186\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 193816 c5a2592985eb3e1067d2c9d477eec48b\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 174426 bb5400afaaea96ead1f8e19f5eb79fb9\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 206342 a70b6225eeaba8cf9d26504693ca70b8\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 185120 5601dd894e010439269d5c0bd91e8db5\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 289724 0d7bc270dfc6d7683a570d528ad92a96\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 158828 d2579647017a526d77826e3ae348e953\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 158876 968a0092505a4f473347aae0bb710c5d\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 2376466 935cd50ae64ad8c59c7107bafc6e5561\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 327328 ab7f4fad9b6b5b033109d235dc0e36c4\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 600820 939a4400e59c3904afc573b1601a7a07\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 184354 6161cb72365483c17049173abf39cd59\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 4558946 44d993b4271262d5488cfac81e99c5b2\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 33948206 4aef9848990371bff17c241445948692\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 351296 84d6136e558ec60cf6eb0178379a11c5\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1339624 76437aa4865fba1b697c8a3f3fb3b2f1\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 816804 8cb90453f4d4aa35d634e6599c81118b\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 393250 b312a066ee5e1e13a65f8a445a914189\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1150760 e47d1f7863413d0754942eecd776f9b3\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 537604 a25646f1eab1a749163e61b9d9fb2e8d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 158622 152512bdddfb3409691d75bed4c84a6d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1007242 e21e70e62da0c841e245512ee6a5a250\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 811696 25a2fe1907c182cc28e05ecfd08dfc0f\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 4641040 fe9a626fb23119662bd125a8b9458001\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1114668 b6b284db1774ae38f1fb18cfeb460b9d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 490144 70c21c1b5fcaf5cdd06395a0aeacff7e\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 247070 3fb2ddbf65f8654fe59409a9c9bc524d\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 2088940 9b27d0384a27e53a5208e19e6e3babee\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 331860 778ab1244ebd2d6910a66e1698f719e9\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 6595652 c8225565f8f3a34be787ae1389bc86b2\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 45037172 c80eb242470d121f7b8ae4d9d36a212f\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 550156 b9e4099533415498780b7e6c197df585\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 1034032 a6a6b1d90a6a6718d415a765af00510e\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_alpha.deb\n Size/MD5 checksum: 2271220 b9050a9940f769b58fb7a160eb233025\n\n AMD64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 262456 b4f62b050205fca353110db0c624e6eb\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 367392 2ae161774b4b6a29e86473ad26715cff\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 299442 b4a98aeea828b815bb7f0e55693b1687\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 798254 c07f2979f3c9411c19e25e5e6886b167\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 210016 e16567f89f08e9936c6c7a5cc304b052\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 205542 08982ad33c7f2a1d94aa0cf0cfd9c770\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 289128 5e66d18a41a5d3a05f18d6bd2ca132b8\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 178566 d9402fac5b66dd0d4617c7238e5cc940\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 183616 8f4cbb71fb99dd08dd0448d555a487b4\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 207968 9398db4bc44ef294b06877665e4f9c91\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 749572 ad6cdc785445303fedec011c1ef2d5f6\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 9651478 4eaa8def4ecd5976f6cf8cd4ab0fc3a6\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1421894 2795436aad06ab09c05d65e5bc6e625b\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 295312 af7b2fa1d86f09ddd5d98f3bfa5fe53d\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 903912 1769b16485bf498237d646f8a6591f7b\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 440874 568dece74fb84e2c5eda067fb0070f87\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 351052 330c8f8555794b86b8e33085494a9c06\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1044626 72910e351b6882861e9449ff416a4155\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 440768 a3ed4bcdafba54e255ed9425b9c7bb66\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 251536 0f69d78d8043f41f70a0a5fa9c8d1cbb\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 191318 259688d13ea9f0ffe289b8c42fc84585\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 512766 6213d0418a9a6cb675a2f81e153f8c5b\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 193090 7a6eb4b0275e8dcf7e29aa190cfc6f28\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 476626 75e2e263aded6c16003d59264c5d05ae\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 233224 43ec6fb540d5e91d446fd19a981f32ae\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 180628 52c1dbdcf85be06c74abad1a865f3ea5\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1168446 5ad7c1f3d0a01c9c69f474613b660f4a\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 226162 dc1d3ec7c2ccaa6727e05502d101f80d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 212448 ef16ee77afadda729a28700e9dcc227c\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 662990 0de77739292cc2b61129726cbd89f3fa\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 163610 e06d312b21d39b536a9954bc494716ed\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 172248 c47e3f4f69880f7423e804c9e0137fd4\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 209100 83f12be5506393a85a4a4977fce3e336\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 181730 618714b797a3b870038b09f82ad23e4e\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 180650 c630359ee8700b1299ba6673074ea0a0\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 569612 7b0b261694b85748250d0ffd2c255ee2\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 198096 4b12f472fdabae64003297d722790fc4\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 197470 9cde8e5b2b157a914312cd6ff9114254\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 247642 48d3df469086b8c71951033a59a87a91\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 172126 406ddcab7c41d5c40ca8459598f2ac80\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 172260 9c85c10f94e71f7e68985f8920ad9045\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 201460 d168b859618974c0f834d7a976abfd4f\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 644322 4267a18c14cf8eb67e82b018567b2993\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 346218 edda4af45672e39cac5c800f15aecbc7\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1552270 9694c5958d11f148f1ff06997663135c\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 187366 cdd3b2bc2859735d7341bf22783ac402\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 182672 4efd36ec7db7e45efb63c4581dd3e1eb\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 413298 5e187a34893104b3abc1ffb2752b81dc\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 172070 12cb3c40c1f9ea937d8211b7fa9c407b\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 175582 8d705c70928f4a975a25153b327b2660\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 237790 138b18bf906a74c04404bff8aeb95188\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 191844 52ee151c97584d247c962435507bc75c\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 173688 8cb11192ccc1433f2a8c10926ec48e09\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 204608 74d5c617732efb911ba68e1c879a565d\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 183824 a29ff4d9206d7d7db46816c742eafaef\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 277538 b7de0da0f5f2a69725ed59f4f8caa81e\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 158948 6598597b7f6061db8912df87fe75be44\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 159000 61cff58c932d421520b2d4976304bb02\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 2084066 a4d43ca1266e7044cae2d510285e4d7c\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 318374 39b0d9a4d61f7d5140b310cfa2599e93\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 516666 2202686827084d066af770088b417d14\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 182558 7d3182407ef42cd3774b8c30dd4bb7b4\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 4203052 78d7e27ffc097936abcf07f8b00b4071\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 38018864 f434249ecc0564df9de0cec2363b11d1\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 333720 42cd2d994fce378d6fb1b90c05750fe8\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1317060 6436529057cf950d482bd0d761f73544\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 735378 6b75f54bd9d81c877119b5897631c0f9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 368478 4fd13f9d90f28f0c767e5c15b0ee2b28\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1122842 793f07ce7caa1dacbc1ee7b56d85a7d9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 460654 28e0c2ae56dd2701f4c8ff86c679d181\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 158752 cb0c1c694389c3585dc9a040e372741b\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 789310 e685dd896d584b8040b97a91b2c73ff9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 686758 06fcc376b70ea731f468287425fd19fa\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 4490136 727ad8cd1f438ec10e2b4cd4296db22e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 889812 6e30ed428b168c690b1287a1cf05c5dd\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 400420 ea46eae2cfb00cbcc4faa9d5b5db526c\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 236522 e0d394d9c51fb14356f541f8451f53f7\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1620638 eb3fd093b17aebe48648bea8e6457ca2\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 337294 e82ca387db899c516653d72cbf23165c\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 5695956 d83cc21201cbc720d94a34d97705dea1\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 6039234 d5c12373c1fb99f5868513bd837b43f1\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 521680 62552be935ff383b64fed3eafc1b54ae\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 962392 5d93134fec243fe98fb9eb5c06055693\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_amd64.deb\n Size/MD5 checksum: 1764112 eafb3394fb9a9c4fbeaad8d7c8e8a8a7\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 255052 2680da0503e09eeac55e69a465125490\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 359352 cf42eed2cf72a49c27e12959528400f6\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 276128 2d65b244fb094af3ed19691104967cc2\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 779642 5eb8f5aa55d17724b20dc459ccf373c4\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 208784 17772d1237c3a686a49b3ffe53d803e7\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 200928 3abd68fbcb3f2fe85444639ce35b97f2\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 285706 be1a73cd4842f4ac3cdf7f13d3991c52\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 178204 6e3d7541bdacf786e8ef60b3fb1c2fb4\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 180726 8278c5d93aa78b54038209ffa3e16b4b\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 205058 a3fea0e264e84f6073d07e8a61bdfba6\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 709784 053bd4749aca993ca46868a31cb117fe\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 9662528 c9616ac69931d9c490f1b911972b7ddb\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1420852 aa0f552c5bc6c5d6058a635e2d1c82ff\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 284104 85da4816b202bf02efad106c1662f290\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 895440 1bb242eaf2b95028b894ee754a2f178c\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 440400 ad1a2a2c7dede16d2b02c944e54168c1\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 335584 e30c16f933be5014b7d70d63bf544c45\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1029856 c344454e0a39da2128fc6ff40b8a461c\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 440318 755e53368d21184eb830ea3c81019d56\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 257558 2c56cbd839c02ac3251f6b976c3d4c37\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 188990 731c76641ff130209c5c9796d04b6d49\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 511952 db8b5a1e60eeb9e4b5cf0ea79a30ee08\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 189146 e65ccc9ded7d10d3a25527d99ed5306d\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 471382 be70e23405d5badac3d3abb6faa5c3bd\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 233836 4ddd54e2d23f793e1c49670a442b971b\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 179748 eb71cf7db3c38cf7c98c21196f67c8c2\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1172580 9eca48e15ff6c2ec8a2c52389195c1c9\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 224356 40b01424085024ea6c0cafc57aa17414\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 208348 711b592d13a6cf5995657d1ecf89d323\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 665108 01e61a9db4913d8f2887365a0fe52384\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 163422 7fd388984159b936ae21709794cea17a\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 171822 7a7d951c4f08c545170cbe402727f965\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 209084 527c16a5371dc37a6f2bdea237323f43\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 181804 f872cf4167df0f4ba1db4b276e9a1a5c\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 178656 fb5847db49918d42f907f01896b27899\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 569260 1bf3697c93356c0c74d6bb81fba0a4d7\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 198700 60adf17bc5bab11a427b05fe15810481\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 194596 770a46105b3a04db1b56da1fc54ba7e7\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 245014 23e227e425ac84ebdaf55b688154dc40\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 172384 a98153f5ef8d30a068a78a4182e655e0\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 171858 2011e1733fe68d13a3b8905ea01fa61e\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 201570 a87775b61a1acadcb217ab24550230ed\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 648436 cf421493ae5403226d9f2e90cfa69b66\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 327816 cfcc855d0d3001c62299722aa4f21118\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1539872 364aa9015383a5a795dce0e410836487\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 186448 b51a2d6b9c0fd463ad425f4b419ba533\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 179926 dafc15d63fef444d00139325ba812f85\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 413662 019ba7ace462f05411b6d897fe4b205b\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 173792 d331d0573f5c3b26d5e0f7a2fdc471c3\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 174892 6cbd9d947e975bb97cd067e724909727\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 238074 92bb6b99419d4d88f85f782ecf19bf8b\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 191966 1db83af96c6f12a27240aacf00a5b672\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 173028 c0275e2e2c251ba1ee694d866cebca76\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 204374 f15cf8a9fa96af5d7cb08c3799fca187\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 181924 a81187578611cb7433bdeada0e89c909\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 273948 5f508f20f8413b216f2f76b28adfdd97\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 158820 1ccb044c404f751d44ec91392a562fae\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 158870 e2b46a5b79883215755924f736be8c08\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1953082 cae4189119304f88ba2e29ecf6f3f34a\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 310498 269ec042d7aec20d1f2ad5b9a35733c7\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 500022 bfc66335a53f8390030e2a2f09b13c16\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 180990 e6fe61d7412db3e030d6c956eafe633f\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 281148 54ecd1ee78d52ab51ac2f8dce246a037\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1191866 9511128d395e048fd9ebf4829bf3708e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 731818 8da320fdb561b5c994d762f6c6f7e3b7\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 353126 c5118f63d735e67e9cef127a8ce25e2d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1098674 c840d35f17013ac109feaf0ac317d74c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 459220 0bf0675b3d642aae7ebda618286291b6\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 158620 311a1ea3cf9acce0563852730fd4208c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 914448 d991eb00fab575a9b6051a9cfc0d2a4d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 411844 11886ac55ada2059c439bd6ea41c1b62\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 226366 429851d25c1802cba4dbf4d18b926cdf\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1557716 ab31a95b6e7eec6f24f1e39946e6474c\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 337604 62e8e75beb54d1da6ca32b7d62c2ca29\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 5533464 c672d05d95e195f373d90661353262ff\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 43859748 32ca9cd9ec25eddd57c098ebcb34b7c0\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 507060 21f40730732e30b0fd95974684dbeb12\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 913792 4de012b629e80eea62e2f98d7248bad2\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_arm.deb\n Size/MD5 checksum: 1700312 fddc9bf00223a90308922a0a8417dc77\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 264954 367231c6eae9338893031138fa8e82a8\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 372460 004fbcf63c01c29cf980e5d215327063\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 306694 6fc8f191c123aa9f8d4886b3702028ab\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 813870 849c0019714f6ab19dfcbe6b47a78646\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 212576 5a46e45ab17493755ad2c4470ecbd5a2\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 207090 d2b5c409603d5551c80291cd5d40c9fe\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 290486 902bf48dc2c4283df61eb8097f2200c9\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 178698 33678d85ea98978200da1a9f3b04b50f\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 183752 fd0569a84f65ce5ea219e1c6e238b7c0\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 207800 5f62cb1ef19b5236055ed6933c03448c\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 780440 59a431a31c5d5d0f63add6c194e2f14c\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 9906480 c7a29a81d2b5a3a4f2c96baa220f6cea\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1443432 4b238dae6ff3aa3c1be221b6fa551583\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 307226 4d21cb87e876706e75fda8134c3c7b4c\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 926966 4d51d193188049e1d66d9fc84cbb325f\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 454974 a59b204e8dc6a5b3bec265837a7b8a29\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 367698 e127badb1003e68ffcc5807c4e06e607\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1070830 ee1a282211d0c6fd0aa387b074920989\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 454876 4f4180216339062a9113fcb0f249e358\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 253908 36bc902e7dde065535793e631fd6c631\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 194208 d30d18685a15a52c3011cb23fc2d2486\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 524796 d507c9ed18493c425a645989859fadee\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 193574 da0254c7fa075dab63a2d94ca20fad91\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 483090 109287c629fecbd4eb2a34d631c5049c\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 234004 9578f6b1d9d041c30655d70f69810f89\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 182212 8658eaa673355e01aa9f775d54286215\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1203044 c3da913c6e88bc7090e7892f90be83d1\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 230640 f841639f060cb82e0588c6ca58d75ad8\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 216338 91e2fb369a565f3f00be430e35cc4fb0\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 684368 1584be23ffd11bf414cb87e8dc8f6366\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 164168 406ac30ab97cb5447c422e1ad5bd5c2e\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 173050 f6b304709677af2998fd72a9e16ea27a\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 210552 5cd2bdaee45b8df37af924d8518c6c0d\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 182704 687401ea887696fd9eb4622e2eb09371\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 181770 a3cfec4bd55ce4360aae559b6ff5d0df\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 578114 97be6f5c6b2ed11a42a686c9ecb20f2b\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 201684 daf495ee05cb2291e79c542dbd526773\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 202146 b71d8596a43c262bf552f89c149d9ab0\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 250746 f3e26da5951f06c2d1cb6c4ff551725f\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 172528 f4c14e22b22b18dcdc0040ac53dc5a0c\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 172838 638b7e9e38007c8f3b2ae79d37f845c9\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 202496 84ddb24e308186942a5703be47262021\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 665318 37c844853c0c4a0c830aa4fb63b14b5b\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 358836 63e7368d7c94294c1230b3ef4f549816\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1570076 4dd29540ce5d54a34838bdad274d0177\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 187838 d8f546d5cf45d4b834a42fb21cc3793a\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 182692 a84bd6a275ff4b36a4ae3988f2e9a337\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 411126 bae2be0b2836b4c724c4f82369b27b49\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 173004 dd5329f7ff457c71540974467e59ab0c\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 176576 c76d009275ec373edffa0be4ef0a275c\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 239500 9eb50a6aef5b4f065b35e429cb71b573\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 192358 bf238c3e9e29dbc2cdb5f02556c82fab\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 174310 65cc32f17c9fca973afc720fbcfc0a9b\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 205718 2c81b1cf54295fc0f98ae752c9c09a39\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 184062 ee3c0f76e4fa0b26e188a3fb8436e8d8\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 279924 a6ab99d69efc9286019fbbf5a55c7a27\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 158944 853146e5dcd70339a7a0e4025ff76a64\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 158994 cbdf8347f82a52945273fc863df90e67\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 2117296 6b8aba7baf5f7a8c1c8a9b735369b726\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 317372 62e5d59611e9c87276bc6b233ed6601f\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 546834 3bc3ad5fd5b7ccbb6b52e203caa90123\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 183142 a2d176f843166fc310bf5d40f11d61bf\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 339508 8b2300e80ed218e576d920cd5e56a738\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1261402 35853953bcfc4d99048d16a313b84a2b\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 773212 1189a4db89cfa02ea3932eabe441bdc6\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 403784 d3a44769121ffcc4f376028f0810db6c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1176078 3a9b4af0b8ac2437d3e9a985ff9bdd23\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 497418 00f22c101f69704e1301d14463f4b2a1\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 158750 074e8585cd41edb10d5245bdd010b3b9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 956464 408ff4b995eb195f89a92363a868dc01\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 422964 ee32f40f6e84e3ce68252d38ae3cf5cf\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 237732 f37b9132878c227558b0d7facacd6db5\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1804016 8d287b5a6bcd3d73b8bcd0a094a25020\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 337638 ece650dfb12daf390ac1c4f30648fbaf\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 4100312 7fe1250090965da0b841f51b0262a637\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 45021494 e642d3b4e746a87f5af9d2154bfa7db9\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 530362 d392bd53308578aadc0f6f5da86bfca8\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 977334 370fc0881ed0ed44d5f995e210455f8d\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_hppa.deb\n Size/MD5 checksum: 1969552 4b617f6490921fe0a0ec2df287a17171\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 250378 c0adb40a1f0f281bce497101f2383d73\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 342422 c43a91633beb6746d1f3d0992d3feb18\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 286310 a7e5564b5cb29fcc8ac34e8ff18cd468\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 782908 ebf046e0c7efcd37304077de4a0972e4\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 205510 3516ce7ca745eaea87d86d9b7783c977\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 203666 df0616bc67db9c96d9338bf3443c4de2\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 286400 3210fd04d8ecf71de6b3a25189b15231\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 176880 951d181dbe964ce9a9a067e13edc83fc\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 181426 1cced7039123d9bdcb39d972bafe41c1\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 205532 db9f0b7f2401df5d665dbb774e7c56a0\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 725344 b43d75e899863e6290393b3553374dc4\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 9604260 b5e83d3e5593720740378e0981e60138\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1358352 afe8dee28b8b525452cf6c4883364b8b\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 285582 809ff3191264d6c4f687c6c79f5169b8\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 890878 9d6ba858a7d342b4ec9a385263e60e5c\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 414420 5bb98c2bb3e6109f037561c363011cb0\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 338800 1c5fc8b0e71dfb169aecd3d02cf360b4\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1025606 47feaefaee7cddfc97aad8f39baf1277\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 414328 b034f382d879102319ad911c9459733a\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 247014 c4da861cf7759ac1b0e104d93017f121\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 188610 b37ed6705a493e6e864fc9fef2a9627e\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 507860 2d316436208cebb5b7195a58ace64db8\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 190946 de3ac5a5ed51e997dec36a61b88008cb\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 470104 847f59e1241e379d9cd86439bd39ad32\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 231332 3d9c595007bcf463fe3ed037986022f8\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 179732 a0fb910f9e208f50139fa22e01e27b8e\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1166674 5eae3c1ab290125c1b86c0b9773eff65\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 218544 271e29e1ba9dbb2cf77bafb157b47eea\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 209994 42bd97bb4c4fc735a358a7fd3e313cfc\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 660122 d4570c1ccd4feeed7ee78979619f665d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 163268 5166cb508eecc1021b735762c68f7e02\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 171918 7bdeeb05cd15fb4bff4f29fc4209680a\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 208682 bd3729ab9b58f144402680ecabd0f48b\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 179194 84ca13239bcc4a8242bd5865fbe62388\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 178858 a705b8e421985165b9375bdcbe6e6cf1\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 565480 33bc72728c3fd0f4d774a328c4809797\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 193840 2c9509d17ab9b31e87ef5b37d5329960\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 196042 779ef6f3055c9155bb5b45fc2ba0d41e\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 245466 c3aef4911ec4c77fd1b7a933f9212a78\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 171248 e59502de3fb9058b985e4dc795cf0a71\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 171672 ba62e8c2b92c6b4dafc36d010d1bd94f\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 200494 efb6f6f908c81f2756686c556d279432\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 614344 98930fbdf70b919206f2e92e723c68f6\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 329538 a65358e19dd74139b30daa3f7e5b905f\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1530284 3a79484f19f6d45fc96553dd2b2d09d3\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 185056 6dc36d8c8e1bb8ea90a6cb5ff4085db9\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 180700 c726d8ba5a5c9db52e16b7e74505a392\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 410354 d0acf3e5c1121bbeac98daa551b792ed\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 170068 eb7e240b8611e69ecc4aae73df39a631\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 174632 c5d5a7e143a105d2c09460efaf06e043\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 236654 84d041880ddaad6498f9e9e0672cd512\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 190744 3e64b00c09e18ee463836e39e6a40435\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 172770 ca5cc029f07c2a1b561cf0023140b88b\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 203214 3d03fb3264a59f873c98c8f28110908f\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 182902 57a473e3a81a36e4e57b413e1436b0c4\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 265282 ae9b34b9d6aab8a47641f8d649cfb78b\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 158962 e3689c16e351f5e1af6af642d1812e6c\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 159014 85c1ec4b12b51a89e341cda58275b80a\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1941722 cdf5cb7f19e3bac9ccfbcb3e59bd1d94\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 309786 0a9ff8bd3e5633b5e79f1ada5009f506\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 497182 7f1231169acc06accc1a99da2f8e2a0f\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 180734 0fb45798a5067a914728016ef9c96f0a\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 5009302 9ae8c2bfcc5eaf90a767c9e6e5fb1598\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 49486694 df8e67d9d11f647370d46762888ef7e1\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 283594 603e85a65f81a691db330a4fc5d40ae0\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1231058 b816b45d0b99da7430805e19b2e26067\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 705272 a0fb7b966d7efc94f7edcb06af1e638e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 366206 f005f00e228c6e2cf18da9f148910161\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1111324 e665116c4c01db73c16707a1614cddbf\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 435246 658c6fe3e140506cf186fabb496df64a\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 158764 1eed0fca68715dea9c45bf02785eb693\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 790476 ad1c98eca4372f4e66eb7f95f4353565\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 662274 53bd82a3499657f42de46f46b0e6857a\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 4580766 fd164d41d01d284220123d07791ed1c8\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 855166 53fd28ba29af444632746aa7914089fb\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 384702 505f1631517e107d158b6c5a27e2cacc\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 227114 411b6945b3d1a3edcb94e7854c0b7ede\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1467214 10bc34c498efe7bef96d7b9a20db41c3\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 336980 ec4b17e07c29416b12086e1335df4e01\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 5744216 09427c74ab1255ac37dd27fe1f04c8fc\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 54912006 466507f69c3d9fe3b636bab8f6273b2d\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 509566 0166c6e6ac16406da997d6b7cf1231a4\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 912796 d91ed855e0879753f0da72077a8eb5d8\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_i386.deb\n Size/MD5 checksum: 1603762 7ceb702a4ac45ad1d181dc2c71d1f222\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 302006 5ee671d222ba075df8615fa3d187c42b\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 423782 25d70801a0b5d7a00d6fad24e614b52e\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 335500 95f2a87d94a9bfd78479ff4f5550e65b\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 836902 083ac62b3656a0a608df1a827444277b\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 230150 f1617f0c6941c0be7b3138d6fc363a45\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 220672 c031f3b52f174133e4da4f3f2b005a29\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 307156 308b58f12d8a647d8492908cc88ecad3\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 183946 2445e6ed09014f1e28c9a268dd6aa885\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 188030 fd0514aaf0e2ef8b71944780465cc00a\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 212574 30a16edf008d48b9bff733ecacb0ed09\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 906480 7329537e30d7c73fe742d6aa1933f16d\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 9888106 8277b9dcf82c89c70601b2b3b9c19e45\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1606320 6ee51568c3c9c3ca5302fae1a7a30e10\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 355580 5d0ad8106761f187cba7f8911b12a0c1\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 971468 078b743b30c69a28737000e8ae67b482\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 545552 9159e7d26fd494b227f1265a10a7b9f0\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 437318 9572c68c52d8253e8852c6902ce13c24\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1155630 bb345c4712c772ace141c1282924cf77\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 545452 430602169d13682ea74e7e5ccff68579\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 264718 3ba0421c2bbde39159226398839ed3fd\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 201460 ba4089077ee9ea03d4473557bf174427\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 525226 05430b9ddf5fa852a9f270d3a04d083f\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 200982 150065fcbca6d901a301f7f601e2061b\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 484998 16d1c993ecc083d71375737ae30cf4c5\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 241590 76e2a87dfc619bc0fdfc82038c047ff5\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 188478 7c4ea17f7b9c16455a5cb7c5a16066a1\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1185118 ea85aa7688477c10172e22774c89f576\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 248080 289fc65d125d22912957e9f89f436788\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 230230 d8435d86b3462bda9eb9c5ab106189ff\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 689940 8a03163fe71c0a0aeb0bf36bddb62423\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 165088 ddfe2533c0f3e8e06a29d1e331f9f54c\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 173792 52156f7be73238d6240e9ca4e050ffe0\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 210844 94defa98ea294539ae6f495132b5727a\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 187056 7a27c2af2ad740f8e20c71df3658d762\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 185398 72221377dde8fdc36ef710a8d8507aba\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 577652 07968b8a968962fe360968115da76009\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 214230 2b58b672b0c1adacb48cdcdba3d55a77\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 211766 14ae2125c2b84f2f3622355e7dc26c0c\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 261764 fce27f32d83c3a04b0ea9b980dfaf589\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 174752 59a650bebf479d0794f6a07c699e00a4\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 174634 027f07cb28de70731af422c4d57f13ec\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 204526 d2d41234d8f27cee39aa0d48f4f16dc4\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 734720 fa481966bbaee7401b59dee3ef67f15e\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 411004 d517310fb8fb9e9a0f3865924bbe0316\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1627762 a09a4e8181e21fa3c5a2b2b8be49e001\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 192712 7bf902059f3aed5a8ed92c1cb5b8e5ec\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 186874 b07390cb09144b501157778b0e0e12c3\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 415358 160f79ad78ab2e6f18fd7adb5957a26e\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 176996 3e2cacdd32ae5f069bc3ac32223b6339\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 180186 8ed49f6f6a1c103c81995b7dbf1aa6b0\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 242342 e0efb48af2a44d18f0a951417b51466d\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 194936 a71a696819d6c0c287e71f9b9b4c8d83\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 176428 5f602669f656aabe5c9adf7384dc700e\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 208050 fee14e0192747cc455c84bb5fe969870\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 188806 ff25f999dbfeaa1307721f6d86953433\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 312470 c0b582f7acd4cc746474f2bf25587f72\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 158952 f906ef097a760191bd837730ee76f267\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 159006 9a01bc6bef3743472bf9843275aae6a6\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 2774586 5fe69359ba75410c21a1dd6721f7dadf\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 348050 9f75287404e79155f89117547288f53b\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 693774 d442471baa0231b35003ebb993883b3a\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 189006 7e911694c4e9200caa829d5a1230c122\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 8121916 fad7a6214bf539f4f0adda185488b389\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 51595294 f72399f9cdbefef41deb0e65cefac77a\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 349850 96d191e33ec8eb2c341cabcf1549fe8e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1324686 53937473496d38577ea1a1222c3015dc\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 797186 aada3eb9ea7927c4bf95e73d1724dd80\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 447672 6759f72bade84c92e6af7cc51cc87ccb\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1201120 15bbb5c7069b45cfec6511d19affaf86\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 553680 bc3d6741628223b3a5e902bef8a20e3e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 158754 0875b29f48b55c9e3c59934ba567a2d1\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1081276 48337525d4f05298a32aa533da7d051d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 946850 3538e584430d79e9e9564ae05bfa39d1\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 4773820 0b362a3f95d22f907d34877b13d44f86\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1165938 c6f25e24155463818b082a01ea448449\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 494732 5795971ce7e0703664a63628b3e522c9\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 260412 c0f561e38bdddb45b78196489368cbe1\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 2384070 10acf77870ae5aab0cdf04194b731ce6\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 338752 24067fad7d13b86fd8af72adb051ab15\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 8457570 0e3bcaa498f3769c3ad2933dc7720afe\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 56511294 62aec5be589c21be91b25f73823d2e5d\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 582042 94024b2e96443eb87cae72cbe44ac474\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 1133624 8b3c836395af921681d11a5b255a8c0e\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_ia64.deb\n Size/MD5 checksum: 2610784 f1b921aec6751c05aab0b9fce433b7e9\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 269166 5010eaa5e6d8e422a19b72f0683af165\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 383846 2f89bb5aa2a55f937d327f8715f6205d\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 283408 c96dc0fd40c23cb4ac787ce5f2c73a6a\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 795044 f4cda8a3c632bc3a1aa5b4a6296550ea\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 212594 fcaf3ec5d239a550221b2562f6e0ef9a\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 200626 71dacf0194d0f06f48ee415708358bde\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 286206 711d7afc55255098541c6250e1bb3a98\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 178470 adfa22a36292543857c9c9f709bbb340\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 181088 12e6019db9a234bfdf07630a0a400f39\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 205934 a439555eaa63f87753c658aa584fb504\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 741300 262eb068c2ece5ca83c1f21bd00c29f8\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 9875620 fcc104b99091ccc02d828e86973e72fb\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1448680 a0642e720a98a91130fecd7339f50437\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 292062 3204498d567bc8941d9628314b5f5dae\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 914850 ab8ecdfc6319ac56d53438b970f62bf0\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 457332 06e75ae9789930e4eec7af29afd1a0a3\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 345642 7b9905dad48bad24e7385a7501115631\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1054000 6cf08f51e8b8a5b9c12314ca6063eca7\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 457242 22383b4ef1d79d8dafad0690bd83d3e8\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 253608 d3358ec2fff3773877c6e7bff2b69ba2\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 189540 aef791156d5b2a53348a747d36e7deeb\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 519710 ec83cbda7bf7ab9c6ad8b959920f13a5\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 190810 e50c43fb448f9bdc239e5116f033ea13\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 481852 36381f7179266f05d8c7600ce1e0cfd4\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 234536 0e36236f9d87b22448872ada418f45ea\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 180464 b89a78be44a2a055abf18f015ea1b8f0\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1200908 db910863bcb20171214b424f0526470d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 229360 6c1a6c9e01704e1d6abc1c538d848b43\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 210390 42d41169dae6e132345798b66d15a502\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 679148 187997230206f2f9719cdadbaafddcff\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 163946 c86ed75b002bf15a052fb0c40459d074\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 172030 f74b160744baaa8f60a49fb8a3587784\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 209636 f920c90b0b7d56ad61d9fed27717bf9e\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 182044 ec01c19671c7ea2af70408d656bb35df\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 178770 a58baaf537f105e881722dc9ceecb316\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 576606 d8f6165a3e4d22934b29892fa33fc3d5\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 201154 f26b972f8f65486c4fc2a0cbbf653e19\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 197052 8f6a4bee79e93843cd32295c3a702c17\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 246232 4034d2edd60e99a351e59423a4a59b73\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 172578 55d6d0c40bc3f733caa155c114ac1744\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 172112 cc740d02d8fa91a943fbc62585cb339c\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 201840 94ba663284909af3b0cb8d22afb3de3a\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 658602 9eef354495a4d03c4b3a8c9f7de3737c\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 337638 ec7c1898ca66528341b591c6790b20cf\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1558594 dbc1a48e77918450e615245f5103dc73\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 188238 3bc912c123e66dd1a654af76e00bf439\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 181010 13829f417474b0e37e2e913e63ddb13e\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 412098 7afdc7f3eba434a4a5cf0eaec94b5c2b\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 173296 caf6db62ae50c13118a1feb565f2d2ad\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 175420 fa4c6fd9410176c8916016bf28a69760\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 239030 0ce07bd111dc8acbcccedda52fa84d15\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 192168 02c8813f496c3af72a5eff21f00c0c6a\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 173018 665c09dfa211ea81750fa2f33152b8d0\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 204414 b194c4abb717280b5c0a73295969112d\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 183814 4bc62396576b18a89dd6c4d01efcdd9d\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 279112 05988a99649335e024be3e1c31525b37\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 158942 922ba6f861a0f015875811a7fe3a3bc8\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 158990 5eac408d1d698c4ab5a48022e5c6dedc\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 2107806 86860736407f7bd2356b50228abcaae5\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 316568 89cefc7379c8e670050ea963ca43f249\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 543266 ba6f9bec85b3ac63e91a6971046f895c\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 182772 ca11d1838d143b60684cab14da3770a3\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 283986 4f74e4bdf52f555c563a94851d510a90\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1205324 e61ab4e8b2c44710dd081af58ada1b07\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 753278 05584cb3fdd22e38b3b1d455f5c0ca69\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 373548 b2599f3cf8f658a960fa8e62b1202edd\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1144350 c7bbf89458ab7c3c7c49e4ac7e37e0a2\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 497274 a19cd5c0006a3bfdc92f37f6d83fb994\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 158748 6732e350e1eba8d5d5782e2c53333a6d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 933982 51449f7d4588e7e2ae6a2cd3123227fb\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 406138 307325c5ce7b003108e73e6646b6f3da\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 239870 6091a0832a884c26189b1f51a361884b\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1737386 913145bbfb975ccde7abce0071549ba2\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 337714 461b934c65b4f7781bfc9aee348a27a4\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 4021600 5cb9becb7769c820226fc6e70eb1d2cd\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 45540864 65babe7cea5fa23fd256e1d4d28ebd54\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 530430 e9d6bc906d6491f79b0592e0b8588824\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 983432 dcfad8ca579d9f6be64e8ff87ed70b2f\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_mips.deb\n Size/MD5 checksum: 1898740 8a3792d51d3450ad3ac44b0adbe5c6db\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 268868 0e26ccf7421898df16b92eb5103c1cca\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 383662 114ff30ea62c6be9fcb8b234ad81d4cb\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 282430 020fa6f4e6c8ae71f60b6a0b71140635\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 784564 f21142153f1f45d98824a371e3ee0b5b\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 212590 1bd0fa2b4365ac6618519b45b11c05f2\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 200620 cec54b26f24ed3b3b96f41e4433966e2\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 285384 58ab2da5dd5436ac2ee96e50d523e6d3\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 178384 f884e89cbe046f93da5e8faed9a1b2cf\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 180780 a85f617361574a925548cf4eec260f1b\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 205622 a43fa2ddac0b950d082503c15ddf3da5\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 739800 1909000a39ead8618cf9e5c75ebe6e4c\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 9700948 cb7844dc7f78ecf7afa0e4153091c182\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1448868 a2d1e145d17832b043498fafa6c2f64f\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 290594 5abc29b687a993ccc4052ec7a9ff8f7f\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 904000 72af84aa494ee3956252d1c0054bd78e\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 457852 3515113907bf657e434f17199fd42625\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 344184 bd6c1f94424d355b580fb5ab4b6006f0\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1041490 a4bae71eb6a79937e34fd31e7d2f78b6\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 457762 c85681fe4bd747608ce12fec4f5aa64c\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 253582 02c06ff9fe20a7596f92eb421e1ee4b7\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 189442 cc41417ab89fe47ffde77191ccfddea4\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 511622 bc715a85919c4dadb7f6b9469eb2792d\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 190676 070de4895f4c755d0a9c186f265df294\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 474308 6524c5ccb0ddd04e77ea140a20ca6ed6\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 234596 d8697efc7962d649fc150f5aae872163\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 180502 b9099dae1ce891e76d01dc087897e7e2\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1172984 c6e773d94e8707c04918e7655d7a33d7\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 229602 9118ad41abef2305beba9a55b4d7c9be\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 210458 d0f0ffa3db18414ca17656140e16aa43\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 667874 e45a1aeac382c840eecb24a3baa2a1a2\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 163952 2543533598fd105e37cd067278dc917a\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 172004 d6cd8f637c2e722221d58c5763f2352f\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 209074 6dd18c321d2e1b93434a5e6274671278\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 182090 df6aab3c98064fa611806c98d6ab5ac1\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 178798 47248001e55d92998051189ecd4d747b\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 569456 d43a26f7cc29db4159c54e5d8e44cb61\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 201286 735f9f982fbd37314c200400d09566d2\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 197088 55544f7b9e55f8bb6a121514db6d05cd\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 246072 0979eb63cb58a758ce6477a2bf2c46f4\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 172596 3b737eac95dd76b18bfa8a51494723e3\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 172098 d9dd2e052697aa53c0232271a5eed357\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 201432 64e68aaa8a1cac2e92beb294fb3d3270\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 658722 ad089ffe99dd8c8bf830812c39ab0eb5\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 337172 66a59d4188597ed7582c0d707c095caf\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1556428 01524e38b72c13d1858650a5ca712d1a\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 188232 b1997e9578f3c912a569084c5da3c5f4\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 180922 49947dd83ee2e9f5804cef0ca30c271a\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 409526 41190f94af5d26b417d6d09c7975ad4d\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 173394 129c50eadd700f3b48902474b33285e2\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 175468 669bd8af32fa47783e689019277ff4d0\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 238166 5c3acc50414c6b175bf85f0f9fa673b5\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 192214 009cbab6f27029cbf1b6c631e07f40d0\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 173036 d8127187f22fac9ee1cde5da5ff0b726\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 203936 58de48bedd0f1f88b212ca4faae2c3d5\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 183826 7ec5a662b3a8ec383d0517ff41cbdb27\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 278590 13b98fb0b728ce7419fa3c46d4626ccf\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 158950 5a72a66f51b71c4879f23cbf9e778c8e\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 159002 13291cbf663edf683cd85e39e2902685\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 2104252 ab1d0ee18219828df0bdbcc357d189a8\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 316378 31db460463aaaef848ddf5ad3c5f53e0\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 542078 4b2e9281bd99dd59a59d1b1dad14048e\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 182846 2bd525e053e32f233395710df0091ac6\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 280188 c740093c8097ccc51402ca6046b69bae\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1181316 2afc117780e2f976063524263ad8deb9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 740626 92d3269a7a6333d3f62f672f76e68a7f\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 373380 9c0205d73f061f02cc7d8bddd8048558\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1123798 bf5fae7ccda97e95866a2e20270f58e2\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 498554 f349c3acc4be9b5a778cd71e2eabef4c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 158750 34047e38e2009f7f0ac309f6a72573e0\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 929872 7c4a74d05da5f507806960f82139a8c4\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 405240 4593f87339f66aa27924b250e27f58ea\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 240002 53e52bd1ce0b156de4449513062cc660\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1734872 2741be88397bae48a689ef4ae482e9e4\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 337706 8f7b41cb3d602d896c43633436ce9175\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 4015710 c62b1caffdcde8f094530714023b8439\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 44830708 403bbff9d0f43a2cb651c33b941e8747\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 528978 41866a7e3ff1bb8f884e9ac28bd4a6db\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 972088 c57e807d212b52990d8c92250da61804\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_mipsel.deb\n Size/MD5 checksum: 1894886 54cec90dd5099614db0abf42f3e2edfb\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 259374 26d78778f71e217e6821d70692c53e42\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 363474 11e563a15a6970fb820ac5caa98de8fd\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 297102 05c56e911672e2f2cf1a4a6a74ef418e\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1134650 cee560703e4148e7d97d83b55fe60c19\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 210042 34833bfb5e78753762fbc6bfba9cf030\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 204590 a3736e3eea8a0b88ab8d0e9ded68c7ee\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 404888 1fb67741d5f4e40d617f1f0c723df10a\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 178298 2a9f3775924465a9a7e938d4e058d380\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 182876 0797d89d7ce1e497b160bd8290b59347\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 250392 f3e0dc83463ab0a0c7926ff7c9f2ef4b\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 739518 539713c171bd9f51c93f90a8360284f7\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 15238134 e6ed762f91aa188eedad16926cb9055a\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1400722 74ec734584f462ea79439f83df56c4dc\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 288420 87ced67306945d74161e8976ca8ee8dc\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1335662 fd3de5751b76a7ecdf1adf0e1465db4f\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 441314 5805f3789c8bc322470193a5b8edda59\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 343456 5e2fe10da9d316911a3be890fc84be02\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1514776 3b8e768ca30002a3fc25459fa34237ea\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 441212 2b366f6de1a84d7dab268b4884fb4314\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 249770 01bfb467130cbb57f9b19ef743e48ab1\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 190674 49b43a9f42a2af469efd280cdf5ec51e\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 724352 14021ce98cd5a7c43d7c037645b591e3\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 192188 05a1efd47a894f9c532802035256d052\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 692982 061417d2aa98297120f0ebba3c82359c\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 232820 d6734c821be0c31fec34683920e6ea9a\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 181908 567d866d0b475359e7a6f926891886dd\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1859276 c35ba639c03da3549ff501b7dda61d2d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 225358 7ead08134f9683827b5e3bf0c1e22971\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 211972 811812c35d0c3d0b9b9830cb2f376628\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1007406 8781f8cb12fc61cb2cb16c46d9554c74\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 163858 2be98778fac195cd96da0e3fde1eaa9d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 173776 52c060572a5c9c16f3d5e7b78e0801fd\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 235342 7508d5cdec8fa85dcbc3b770c4515bc2\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 180898 86f22bfd2637d3381001d5f74e0169a3\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 181032 30a85f2df72cdef135b5594c102f59df\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 832186 cf3334797eefc7c1b40e1c86997ba044\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 199028 f81b02fe5c38763f8f5cd547060a393b\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 199030 12e76e3cde2e30b4b733f69f578cbafe\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 464148 d17c858bc5d74cc05aec20343bea735e\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 171812 16a34d6823fcb5c67995d87ec88b9d66\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 173482 0e6cdc6345f97d07eee4428ee741e281\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 221502 385fa26a06b59e1dd6bfa1d03c04435d\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 645538 a2a7aeb902a1d6bc24d63a71f06fa054\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 337490 dee9dc877c6f03df69fdc48229f409b7\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 2249054 bed796e69bd857aa57f11ec5bb913ae8\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 186866 cd3721a0a1dfe763bbac7281de3efc21\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 182396 f9817c732c3f8b48dacdf61208c12ece\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 553822 55f3f1cb6cc55f5fa54a7458a28a68fa\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 172034 b144bfae2b3e08746296aa4c3b9b17c7\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 176988 71398b66c2fb5d526c19008e9500413f\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 279602 0db901388334dc007389c2bf342515fa\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 191428 e5691115002511d26e2db338408b4cd5\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 174630 ec3f22b57e97ca771fa2943f7066b724\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 225276 8c7eb37c89d4f8f988bee94ba8120c36\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 184422 7ea7c08e908f7f716fc972ee526483d1\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 272848 5f2ec3d1d430f31bf452ffa34fe3b055\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 158950 8917cbccc5a3f01064f3471964b7bf69\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 159010 03a6112bcf58c05164484835e0856fed\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 2113020 c3e4b3358a777e703021525f86e80751\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 315108 eef64e3ea4440e8282227e1fb3152ff7\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 509018 24712335792265bbab7e98c35a815a38\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 183050 43feab022c6fac72ff71db88858a3d78\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 3084158 edb19588f28d61a339ea58bd4fa7b965\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 42024378 e8599aadbab5c6a770064576cdcd6c2f\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 296042 597ccfd823e475a969594ff1033cca1c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1904798 20e7d10ec4f50e8997411e62ce568052\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 734210 55c4925c6f9c5869b7ef6a2fb87d8808\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 372526 5356b766008189588c77418e2f424a2b\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1613274 b68b60d12d9a15bccb22cafc38502774\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 468752 cb8d9fe7b4591a9ac3024672c2a35112\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 158754 bed7631cb679775d5ca7c4ef7a6b8c37\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 808232 f5389edf6661e0b92ebc039890e9dce6\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 690356 3a77eab1549f2b4bdf3426c0cb126b7d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 6682568 bb2fdfa17552f8a96b6b58179bf41d0f\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 885830 8ec542b4ee3131c48b467370e3535b1b\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 390322 8f53a5a52711ca2d60cb812b72fd8a73\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 233160 08854bff1e27bed95d79c742e203ed4a\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1583818 45401c648e2d85607601a260ef7b5d10\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 337186 48aedb238f6c39db97f99e117725c260\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 5796538 e6e06f2919698ab0a91738b9ef1c62b1\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 46807558 dba08dbf03db5886f5f8128e873e608d\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 515746 59ef81ab70de51f9c2e31d24dcec86af\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 941600 0062f6bd39c372f73065d63d473b0f37\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_powerpc.deb\n Size/MD5 checksum: 1729558 732fbc90bcaf9c27b6585557779c0394\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 261168 fffdd9e8266d52db1bc60a3756a26bb1\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 356496 6d5fd1c02595857ced324d22ddf12c93\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 299774 4d512101d4b3bebc693c5317b64117b8\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 862074 d7e8ab6fb7bd742277f2866af05843f1\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 207580 fb92975167aaff9641eabbeb1111c654\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 205188 2611027e655397af83a53ced7390b253\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 298382 56d96eef6ddbd1614a30226bc8dcfbb1\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 179870 489c060e484f9ac9d57fa5abb42f074e\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 183482 d11ac262401f2f97e7af567a103f3ccf\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 209348 124195257f9b443ef799e3001e5edc5b\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 755080 6d07984585393b9606b28f0724b26729\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 9935444 3f3ee70ef8ef4d9bccc07526af33f666\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1385846 923ced7b3d9e3efd7ac8aa2c5c8789f5\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 301674 5962be628ef61443b47e52559530d632\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 950406 80fba6b2712e96af11231fb1ec39c512\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 434866 b4da58bbff1e863d383b917ca9f1e06b\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 358716 1925b4858f61b5719bf0426e419257cf\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1106146 072faa2a3d8294ebd1de83a338f66cfe\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 434768 a31fb9403e3502e29e5b57649900d754\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 250070 945f8d7a84b2b51443f7930ac2ce2369\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 191342 4f8c61e1d2edc895e47e9aa0371e1c63\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 526794 284fcc0f051c7aead8d430bc08b4a285\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 193966 a3e321e4cf666e126e7bcdc76861d98a\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 488824 be69c37ca0f33e26787422828e900ed5\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 231360 b2cbfae74f4bee4f07ffd4e050b98412\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 180276 09d5d60f469d65ef46db2607527e0932\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1197282 86ccbcdd0159dcc656130b73db9b4524\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 224480 6718b57d3a303f5653187aca65a21de8\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 214458 98ea816b771f6cf08a02f4109354d85d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 687348 5aeeaa467eb20c3309723bc48f27d68e\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 164172 e909bd1a23861349042b89726a3a3d1d\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 172516 730be8794ed9c075f6b936649996c409\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 210054 f647b0e05f4c065499c3cc9066953b68\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 180710 395ddb250d6edaade4a56b984cb170a3\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 180600 e00b98ac0c6ff3acd029989ca8c35733\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 577026 531278562c616494a43a6e0526921cf5\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 197954 afb63232fcd6cf4bdede08b9e358137f\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 199084 285faedb46489fa72d87ebea4d5064cb\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 257900 8b42671b790ad2bbab1b221dfc1ddc30\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 171850 2ad2c1cb91008302b4e7da66fba83a8d\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 172420 60bb31d5019029e3274d53c69af284e3\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 202638 94119f34b9a397f91add199d92a5b354\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 636478 4ca30c2189a606c9bfb730026597f7b6\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 349718 5d5b2232e327866252e25b4335e5ccc1\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1593538 ccf631c531bb795f5eba6a06d29df6e0\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 187932 c66f58a1062fb9f89e9bee715436116c\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 182720 ffd442fdc7bae00646e8cde1b488cd61\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 413812 cdd67f5787c7792b1429f07de20fb6d5\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 171656 2299bbbeb0c1ed60ca9910ae32d8e047\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 175532 78af955b03ec76ccd2b30853c8062ecf\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 239962 145664b7396db5ced6033191638c7e3a\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 191338 6a9ed32c65fbcee7a64133f7cf6e1758\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 173460 03da364b7e11643cb9efc04043c12110\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 206056 4fc7fa67b7271529119ff5b41c5e00a0\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 183582 c40e27a64924c56ebe501867b16b119a\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 276784 d3fe3f2ecf9b26dde434f76cfd8922fe\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 158942 6dba8d21484d70290b82fe017f6b3495\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 158998 0e07defd0d4b2f489334a49462328ddb\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1716312 5fff48b4ddd7403f5850374aeecb79b4\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 317040 fbd31303ab2a112ba2c3f192e4facf65\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 530238 8f6dd780f3d1a7a742b7e26084211d8f\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 182500 a1ddb0ce30d6b2036e765e956912b4c9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 330994 e39ca589d9e5e70e6aeb4ae7fc18ecdf\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1310934 662a5e6f145f07f96726a534d3981cd6\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 731060 57d39158a1b543ae8fc0330b71fd98d3\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 368882 3017398a38dfaa609e5983193f1a13c7\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1203580 3b6459934f0650229d3df54e1110d5ba\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 438524 35939ab49ddc28fb27184cbe89d3a15a\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 158750 79a0d83d32f885c67a25e297ac8f21a9\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 851204 a8d0ba470352ab72b677c0169c208885\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 354508 f0716b88f2f05722301b7d1575a45744\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 235212 4ba00619cf5d24599ed6b3832a113e71\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1623668 ad6de7da6af5f007e07589b32324dfa7\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 337376 a9f28966b8a0f9ec9b1c69e1bda5df8c\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 522008 e73bb6f4ba18ae082fab2df223c1629d\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 806538 efa90e2925f2db3809fc5ae393c05393\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_s390.deb\n Size/MD5 checksum: 1766998 bd72258e6caba96df7591150d00a0b0b\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 251440 ac06abdba31adb189df5f6b8e3f21b1c\n http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 344330 a134ba9f9570295bf6b7ce88e2221f3d\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 285412 b8652f4f947b4484bed2d29f2a0a3463\n http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 787170 1f51ce9fa2bbbd5b2122ea28908a2752\n http://security.debian.org/pool/updates/main/x/xfree86/libice-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 206308 5d0ae986cf3a848dc56bf007ae0c0743\n http://security.debian.org/pool/updates/main/x/xfree86/libice6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 200584 19e487be05a479b9c63641b3816d7f26\n http://security.debian.org/pool/updates/main/x/xfree86/libice6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 283798 99e8f3278c167369b95b911e9e7681f1\n http://security.debian.org/pool/updates/main/x/xfree86/libsm-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 177248 8982f52e79d1fe28bf5c1e471c11a9a4\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 181154 9888305cde0004c63377e7aec6ad1d2e\n http://security.debian.org/pool/updates/main/x/xfree86/libsm6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 205150 7525595086c000fe25d0a15464939dc1\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 712186 fafd99383f6c24a54330e1a15e28c567\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 9812180 8fa35657e4de8730c2f3531618aa9229\n http://security.debian.org/pool/updates/main/x/xfree86/libx11-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1366190 f24fa53be6b4bf673689ad1e4b05bb8c\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 280010 6564cb2f6c9a89863d18fe84cdf3bc1c\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 892352 cd60dd327d3055b700c1f606d1548820\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 417750 9cf50269e1bd277b3bc0a05304e0d303\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 331956 db55193f88759c113a1aadc326f033d8\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1026652 86f5d4468292012b7ddeec986bf305e4\n http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 417644 266ae2bdb3671734936df4f6600152b5\n http://security.debian.org/pool/updates/main/x/xfree86/libxext-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 247782 bf67f8a27761ee2a171abb6116037114\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 188120 f0ee04d2ccc60a5bbd18eaf80950b9e5\n http://security.debian.org/pool/updates/main/x/xfree86/libxext6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 516918 5f57183597f09c21a229a13b2d24e627\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 190168 d0f689ddfd6f33b7c62674e22edc8562\n http://security.debian.org/pool/updates/main/x/xfree86/libxft1-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 478416 cabb0b6be726a06062ce3b7f4c6adc30\n http://security.debian.org/pool/updates/main/x/xfree86/libxi-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 230798 d7a44ef6d8e20c81beecb1aa8b7c955c\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 178822 88e7ae466768a816f8727fd1b8ed70e9\n http://security.debian.org/pool/updates/main/x/xfree86/libxi6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1198894 e3f07375b2c1c35e4ba1eed41489c6f4\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 219380 35fd83fe56d635eab8ee060c3a1ed187\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 208498 91049148a428a143af58827a797fbd01\n http://security.debian.org/pool/updates/main/x/xfree86/libxmu6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 673480 f60cc0e11ca0d5c29e4f84e0d88244cf\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 163510 3a2d2c0590462306597479ec546a6faa\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 172044 3589ad45751f3f1690752a045dac38e4\n http://security.debian.org/pool/updates/main/x/xfree86/libxmuu1-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 209308 1a5da7762a77ea666a8f1dab642848a9\n http://security.debian.org/pool/updates/main/x/xfree86/libxp-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 179282 d2b380ceaf00e648700ae47ec8df76a2\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 177868 1a5b88a0f45afa5a10fe4e63b69d228d\n http://security.debian.org/pool/updates/main/x/xfree86/libxp6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 574090 0a05f6bf3b6b103c8dbbb33942b1df65\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 194472 37710066ef6100f76353677021bb7b4f\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 195478 a0aeb02d6ba808691ef988c008819d16\n http://security.debian.org/pool/updates/main/x/xfree86/libxpm4-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 241670 09f1cddeab420cc7f5861c0e5ab0ff46\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 171466 eed394bcb0fe9669f70ecc190c1552dc\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 171698 932002fbe0ce5964b0febcf4d8ce669f\n http://security.debian.org/pool/updates/main/x/xfree86/libxrandr2-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 200904 87c47976811b7b21132fe574819a8c86\n http://security.debian.org/pool/updates/main/x/xfree86/libxt-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 627518 5fad1e0b4e43f4cfb321c1d054c50460\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 330786 8d51b08230f6688525077d54d476f7a7\n http://security.debian.org/pool/updates/main/x/xfree86/libxt6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1533586 d01244d9c2db68a2037f2b6a79b9a4a9\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 185242 39c65f3d74299244e6ba2d9d9a7637b9\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 179806 1d392c8278e746edbea46476ec620734\n http://security.debian.org/pool/updates/main/x/xfree86/libxtrap6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 410534 111cf58138eab3c3e18b30b3acf64d84\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 170748 e6763387b466bd168fbb1bc62acba465\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 174532 4d26f1c58ea55f69488c6586926e3e23\n http://security.debian.org/pool/updates/main/x/xfree86/libxtst6-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 237324 b5615a1ef6032d6ffa47d77069c99c2d\n http://security.debian.org/pool/updates/main/x/xfree86/libxv-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 190596 52288fae5963885ed95912c8dc857a43\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 172320 bfe89655352c50ae91731b1cdd197f75\n http://security.debian.org/pool/updates/main/x/xfree86/libxv1-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 203150 7ae585e323c50c093e9cd93af4241efe\n http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 182020 898fa2dddbc44ca62c3a1dd7a8e445d3\n http://security.debian.org/pool/updates/main/x/xfree86/twm_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 268524 899b17c4556bbe1bab2bbf2d3ac56cef\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 158952 0cefd63f11b59d2e9f985982353fb94b\n http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 159004 b064c683874c7daf24580160fabcc187\n http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1935172 231ce2aba389d3ead848607d074a975f\n http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 308136 1ed93a8d60d375b1b2161f39d5b66533\n http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 499218 a091949058206de9f1917679fe66e062\n http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 180788 a1e790ce75a87b5cf8d4112f116ab890\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 706390 b8ee650755e2d5b0fb15bc7bd1c0f8a6\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dri-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 5583982 9de1e8001cd10136526871f79086c74c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 287436 de5a0fc3218cacbc4d8a1f56c70fe83e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1253614 d91bd072b723fdf29cc477d4c4cae92c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-gl-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 707010 2a92d91d5e33b1b8603fdc28621833e5\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 358124 f18528b47e6ce2f1d5ea11ff0f3b0f2e\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1110602 f00f2901ae95d92d7eca219adc06199c\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-glu-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 442482 3d11c990c8303c989eacdd947ed94fd3\n http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 158754 95656bdaa8515a925b952a4e2829920d\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 823358 89fd1c07423b5fd759de55a777a93113\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 696098 a71694d9f0d36f6da6fa51eac8a5eef5\n http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa4-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 4596400 70f6a804608937d19fe829a18ed9c710\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-dev_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 863338 dbc83cca098a0f26cf1641f53ec9e332\n http://security.debian.org/pool/updates/main/x/xfree86/xlibs-static-pic_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 387836 ff1087c9cb744931f89482eb7d140c4b\n http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 226614 49fce249a4a4be0f2919fda05898022b\n http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1495366 3b2625ce088bda8e128a885d0084ca3a\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 336994 65ea1c5f4df26cc13f37d4eedf612386\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 5432612 92454d9ace057cc119c5df619f350a12\n http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86-dbg_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 49725966 60afa442c79265b94b775bdae7dc20ff\n http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 509058 3f1f81f2fe81e4fc9cb05ce503f0d9e6\n http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 921046 94afcf59df9ae5a8b6c053f121da0a69\n http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.3.0.dfsg.1-14sarge5_sparc.deb\n Size/MD5 checksum: 1626944 153339cfbd29897e574dedf7877cf550\n\n\nDebian GNU/Linux 4.0 alias etch\n- -------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7.dsc\n Size/MD5 checksum: 794 6090b1b5d0c40f41cf8466d4be26c86c\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7.diff.gz\n Size/MD5 checksum: 29837 47090deff75f0478f865e79b88e22ce6\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1.orig.tar.gz\n Size/MD5 checksum: 174623 32e8b6b24ec3d4c0de11d81061640cc2\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_alpha.deb\n Size/MD5 checksum: 76014 5e6864f35326a705d7a642736b62cec8\n\n AMD64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_amd64.deb\n Size/MD5 checksum: 65630 d8433ca92b7fe0fe5885e511d6cd395f\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_arm.deb\n Size/MD5 checksum: 61458 06c9e45f7994be3685d23f17f03ff583\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_hppa.deb\n Size/MD5 checksum: 69304 4bae03d67b833406c0cfa6cd150487fd\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_i386.deb\n Size/MD5 checksum: 57298 3d4296688c5a823219dc42f8de0a2675\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_ia64.deb\n Size/MD5 checksum: 97944 204e795e0d95c1bdd0a6b32a94aa690b\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_mips.deb\n Size/MD5 checksum: 69546 1d66d1e568f7533d9f4d2b1c5da60d83\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_mipsel.deb\n Size/MD5 checksum: 69420 e9a317fdc3dc09256d2eb774f87fa2b0\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_powerpc.deb\n Size/MD5 checksum: 64928 589e9536b67b3156f682276c423ac794\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_s390.deb\n Size/MD5 checksum: 67958 e66cb2303ae990b1e3d4f1fec6ed81c5\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xfs/xfs_1.0.1-7_sparc.deb\n Size/MD5 checksum: 57866 4c3d4dd2d60c2f2fe579f47d0c9a92e7\n\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n", "modified": "2007-10-10T00:00:00", "published": "2007-10-10T00:00:00", "id": "DEBIAN:DSA-1385-1:61CE7", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2007/msg00158.html", "title": "[SECURITY] [DSA 1385-1] New xfs packages fix arbitrary code execution", "type": "debian", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2019-02-21T01:10:05", "bulletinFamily": "scanner", "description": "Matthieu Herrb reports : Problem Description : Several vulnerabilities have been identified in xfs, the X font server. The QueryXBitmaps and QueryXExtents protocol requests suffer from lack of validation of their 'length' parameters. Impact : On most modern systems, the font server is accessible only for local clients and runs with reduced privileges, but on some systems it may still be accessible from remote clients and possibly running with root privileges, creating an opportunity for remote privilege escalation.", "modified": "2018-11-23T00:00:00", "id": "FREEBSD_PKG_A5F667DB759611DC8B7A0019B944B34E.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=26939", "published": "2007-10-09T00:00:00", "title": "FreeBSD : xfs -- multiple vulnerabilities (a5f667db-7596-11dc-8b7a-0019b944b34e)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(26939);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/11/23 12:49:57\");\n\n script_cve_id(\"CVE-2007-4568\");\n\n script_name(english:\"FreeBSD : xfs -- multiple vulnerabilities (a5f667db-7596-11dc-8b7a-0019b944b34e)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Matthieu Herrb reports : Problem Description : Several vulnerabilities\nhave been identified in xfs, the X font server. The QueryXBitmaps and\nQueryXExtents protocol requests suffer from lack of validation of\ntheir 'length' parameters. Impact : On most modern systems, the font\nserver is accessible only for local clients and runs with reduced\nprivileges, but on some systems it may still be accessible from remote\nclients and possibly running with root privileges, creating an\nopportunity for remote privilege escalation.\"\n );\n # http://lists.freedesktop.org/archives/xorg/2007-October/028899.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.freedesktop.org/archives/xorg/2007-October/028899.html\"\n );\n # https://vuxml.freebsd.org/freebsd/a5f667db-7596-11dc-8b7a-0019b944b34e.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?bd51f7a9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_cwe_id(119, 189);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/10/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/10/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/10/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"xfs<1.0.5,1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:10:06", "bulletinFamily": "scanner", "description": "Sean Larsson discovered that two code paths inside the X Font Server handle integer values insecurely, which may lead to the execution of arbitrary code.", "modified": "2018-11-10T00:00:00", "id": "DEBIAN_DSA-1385.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=26976", "published": "2007-10-12T00:00:00", "title": "Debian DSA-1385-1 : xfs - several vulnerabilities", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-1385. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(26976);\n script_version(\"1.16\");\n script_cvs_date(\"Date: 2018/11/10 11:49:33\");\n\n script_cve_id(\"CVE-2007-4568\");\n script_xref(name:\"DSA\", value:\"1385\");\n\n script_name(english:\"Debian DSA-1385-1 : xfs - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Sean Larsson discovered that two code paths inside the X Font Server\nhandle integer values insecurely, which may lead to the execution of\narbitrary code.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2007/dsa-1385\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xfs packages.\n\nFor the oldstable distribution (sarge) this problem has been fixed in\nversion 4.3.0.dfsg.1-14sarge5 of xfree86. Packages for m68k are not\nyet available. They will be provided later.\n\nFor the stable distribution (etch) this problem has been fixed in\nversion 1.0.1-7.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_cwe_id(119, 189);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:4.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/10/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.1\", prefix:\"lbxproxy\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libdps-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libdps1\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libdps1-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libice-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libice6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libice6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libsm-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libsm6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libsm6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libx11-6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libx11-6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libx11-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxaw6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxaw6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxaw6-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxaw7\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxaw7-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxaw7-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxext-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxext6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxext6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxft1\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxft1-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxi-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxi6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxi6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxmu-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxmu6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxmu6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxmuu-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxmuu1\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxmuu1-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxp-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxp6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxp6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxpm-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxpm4\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxpm4-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxrandr-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxrandr2\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxrandr2-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxt-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxt6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxt6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxtrap-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxtrap6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxtrap6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxtst-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxtst6\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxtst6-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxv-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxv1\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libxv1-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"pm-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"proxymngr\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"twm\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"x-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"x-window-system\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"x-window-system-core\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"x-window-system-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xbase-clients\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xdm\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-100dpi\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-100dpi-transcoded\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-75dpi\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-75dpi-transcoded\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-base\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-base-transcoded\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-cyrillic\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfonts-scalable\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfree86-common\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfs\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xfwp\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-dri\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-dri-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-gl\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-gl-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-gl-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-glu\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-glu-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa-glu-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa3\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibmesa3-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibosmesa-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibosmesa4\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibosmesa4-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs-data\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs-pic\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs-static-dev\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xlibs-static-pic\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xmh\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xnest\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xserver-common\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xserver-xfree86\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xserver-xfree86-dbg\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xspecs\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xterm\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xutils\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"xvfb\", reference:\"4.3.0.dfsg.1-14sarge5\")) flag++;\nif (deb_check(release:\"4.0\", prefix:\"xfs\", reference:\"1.0.1-7\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:10:18", "bulletinFamily": "scanner", "description": "Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values, which triggers a heap-based buffer overflow. (CVE-2007-4568)\n\nThe swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption. (CVE-2007-4990)\n\nUpdated package fixes these issues.", "modified": "2018-07-19T00:00:00", "id": "MANDRAKE_MDKSA-2007-210.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27817", "published": "2007-11-07T00:00:00", "title": "Mandrake Linux Security Advisory : xfs (MDKSA-2007:210)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2007:210. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27817);\n script_version (\"1.17\");\n script_cvs_date(\"Date: 2018/07/19 20:59:14\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\");\n script_xref(name:\"MDKSA\", value:\"2007:210\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xfs (MDKSA-2007:210)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Integer overflow in the build_range function in X.Org X Font Server\n(xfs) before 1.0.5 allows context-dependent attackers to execute\narbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol\nrequests with crafted size values, which triggers a heap-based buffer\noverflow. (CVE-2007-4568)\n\nThe swap_char2b function in X.Org X Font Server (xfs) before 1.0.5\nallows context-dependent attackers to execute arbitrary code via (1)\nQueryXBitmaps and (2) QueryXExtents protocol requests with crafted\nsize values that specify an arbitrary number of bytes to be swapped on\nthe heap, which triggers heap corruption. (CVE-2007-4990)\n\nUpdated package fixes these issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xfs package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2007\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2007.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/11/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/11/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2007.0\", reference:\"xfs-1.0.2-13.1mdv2007.0\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2007.1\", reference:\"xfs-1.0.4-2.1mdv2007.1\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:10:29", "bulletinFamily": "scanner", "description": "- Bug #373261 - CVE-2007-4568 xfs integer overflow in the build_range function [f7]\n\n - Bug #373331 - CVE-2007-4990 xfs heap overflow in the swap_char2b function [f7]\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-11-28T00:00:00", "id": "FEDORA_2007-4263.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=29278", "published": "2007-12-11T00:00:00", "title": "Fedora 7 : xorg-x11-xfs-1.0.5-1.fc7 (2007-4263)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2007-4263.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(29278);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2018/11/28 22:47:42\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\");\n script_bugtraq_id(25898);\n script_xref(name:\"FEDORA\", value:\"2007-4263\");\n\n script_name(english:\"Fedora 7 : xorg-x11-xfs-1.0.5-1.fc7 (2007-4263)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Bug #373261 - CVE-2007-4568 xfs integer overflow in the\n build_range function [f7]\n\n - Bug #373331 - CVE-2007-4990 xfs heap overflow in the\n swap_char2b function [f7]\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=373261\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=373331\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2007-December/005814.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?42fef06a\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected xorg-x11-xfs, xorg-x11-xfs-debuginfo and / or\nxorg-x11-xfs-utils packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xorg-x11-xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xorg-x11-xfs-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xorg-x11-xfs-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:7\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/12/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/12/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 7.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC7\", reference:\"xorg-x11-xfs-1.0.5-1.fc7\")) flag++;\nif (rpm_check(release:\"FC7\", reference:\"xorg-x11-xfs-debuginfo-1.0.5-1.fc7\")) flag++;\nif (rpm_check(release:\"FC7\", reference:\"xorg-x11-xfs-utils-1.0.5-1.fc7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xorg-x11-xfs / xorg-x11-xfs-debuginfo / xorg-x11-xfs-utils\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:10:33", "bulletinFamily": "scanner", "description": "This update fixes the following issues :\n\nX Font Server build_range() Integer Overflow Vulnerability [IDEF2708] (CVE-2007-4989), X Font Server swap_char2b() Heap Overflow Vulnerability [IDEF2709] (CVE-2007-4990), Composite extension buffer overflow. (CVE-2007-4730)", "modified": "2016-12-22T00:00:00", "id": "SUSE_XORG-X11-4485.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=29603", "published": "2007-12-13T00:00:00", "title": "SuSE 10 Security Update : X.org X11 (ZYPP Patch Number 4485)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(29603);\n script_version (\"$Revision: 1.14 $\");\n script_cvs_date(\"$Date: 2016/12/22 20:42:29 $\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4730\", \"CVE-2007-4990\");\n\n script_name(english:\"SuSE 10 Security Update : X.org X11 (ZYPP Patch Number 4485)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes the following issues :\n\nX Font Server build_range() Integer Overflow Vulnerability [IDEF2708]\n(CVE-2007-4989), X Font Server swap_char2b() Heap Overflow\nVulnerability [IDEF2709] (CVE-2007-4990), Composite extension buffer\noverflow. (CVE-2007-4730)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2007-4730.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2007-4989.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2007-4990.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 4485.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/10/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-Xnest-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-Xvfb-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-Xvnc-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-devel-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-fonts-100dpi-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-fonts-75dpi-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-fonts-cyrillic-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-fonts-scalable-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-fonts-syriac-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-libs-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-man-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-server-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, reference:\"xorg-x11-server-glx-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, cpu:\"x86_64\", reference:\"xorg-x11-devel-32bit-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:1, cpu:\"x86_64\", reference:\"xorg-x11-libs-32bit-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-Xnest-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-Xvfb-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-Xvnc-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-devel-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-doc-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-fonts-100dpi-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-fonts-75dpi-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-fonts-cyrillic-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-fonts-scalable-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-fonts-syriac-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-libs-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-man-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-sdk-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-server-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, reference:\"xorg-x11-server-glx-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, cpu:\"x86_64\", reference:\"xorg-x11-devel-32bit-6.9.0-50.52\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:1, cpu:\"x86_64\", reference:\"xorg-x11-libs-32bit-6.9.0-50.52\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:10:07", "bulletinFamily": "scanner", "description": "The remote host is affected by the vulnerability described in GLSA-200710-11 (X Font Server: Multiple Vulnerabilities)\n\n iDefense reported that the xfs init script does not correctly handle a race condition when setting permissions of a temporary file (CVE-2007-3103). Sean Larsson discovered an integer overflow vulnerability in the build_range() function possibly leading to a heap-based buffer overflow when handling 'QueryXBitmaps' and 'QueryXExtents' protocol requests (CVE-2007-4568). Sean Larsson also discovered an error in the swap_char2b() function possibly leading to a heap corruption when handling the same protocol requests (CVE-2007-4990).\n Impact :\n\n The first issue would allow a local attacker to change permissions of arbitrary files to be world-writable by performing a symlink attack.\n The second and third issues would allow a local attacker to execute arbitrary code with privileges of the user running the X Font Server, usually xfs.\n Workaround :\n\n There is no known workaround at this time.", "modified": "2018-08-10T00:00:00", "id": "GENTOO_GLSA-200710-11.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27046", "published": "2007-10-15T00:00:00", "title": "GLSA-200710-11 : X Font Server: Multiple Vulnerabilities", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200710-11.\n#\n# The advisory text is Copyright (C) 2001-2016 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27046);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/08/10 18:07:06\");\n\n script_cve_id(\"CVE-2007-3103\", \"CVE-2007-4568\", \"CVE-2007-4990\");\n script_xref(name:\"GLSA\", value:\"200710-11\");\n\n script_name(english:\"GLSA-200710-11 : X Font Server: Multiple Vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200710-11\n(X Font Server: Multiple Vulnerabilities)\n\n iDefense reported that the xfs init script does not correctly handle a\n race condition when setting permissions of a temporary file\n (CVE-2007-3103). Sean Larsson discovered an integer overflow\n vulnerability in the build_range() function possibly leading to a\n heap-based buffer overflow when handling 'QueryXBitmaps' and\n 'QueryXExtents' protocol requests (CVE-2007-4568). Sean Larsson also\n discovered an error in the swap_char2b() function possibly leading to a\n heap corruption when handling the same protocol requests\n (CVE-2007-4990).\n \nImpact :\n\n The first issue would allow a local attacker to change permissions of\n arbitrary files to be world-writable by performing a symlink attack.\n The second and third issues would allow a local attacker to execute\n arbitrary code with privileges of the user running the X Font Server,\n usually xfs.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200710-11\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All X Font Server users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=x11-apps/xfs-1.0.5'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(59, 119, 189);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/10/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/10/15\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/10/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"x11-apps/xfs\", unaffected:make_list(\"ge 1.0.5\"), vulnerable:make_list(\"lt 1.0.5\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"X Font Server\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:12:52", "bulletinFamily": "scanner", "description": "Updated xorg-x11 packages that fix several security issues are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\n[Updated 18th January 2008] The original packages distributed with this errata had a bug which could cause some X applications to fail on 32-bit platforms. We have updated the packages to correct this bug.\n\nThe xorg-x11 packages contain X.Org, an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.\n\nTwo integer overflow flaws were found in the X.Org server's EVI and MIT-SHM modules. A malicious authorized client could exploit these issues to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the X.Org server handled malformed font files. A malicious local user could exploit these issues to potentially execute arbitrary code with the privileges of the X.Org server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the X.Org server's XInput extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-6427)\n\nAn input validation flaw was found in the X.Org server's XFree86-Misc extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-5760)\n\nAn information disclosure flaw was found in the X.Org server's TOG-CUP extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially view arbitrary memory content within the X server's address space. (CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.Org font server, xfs. A user with the ability to connect to the font server could have been able to cause a denial of service (crash), or potentially execute arbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the X.Org server's XC-SECURITY extension, that could have allowed a local user to verify the existence of an arbitrary file, even in directories that are not normally accessible to that user. (CVE-2007-5958)\n\nUsers of xorg-x11 should upgrade to these updated packages, which contain backported patches to resolve these issues.", "modified": "2018-11-10T00:00:00", "id": "CENTOS_RHSA-2008-0030.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=43667", "published": "2010-01-06T00:00:00", "title": "CentOS 4 : xorg-x11 (CESA-2008:0030)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2008:0030 and \n# CentOS Errata and Security Advisory 2008:0030 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(43667);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2018/11/10 11:49:28\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5760\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_bugtraq_id(25898, 27350, 27351, 27352, 27353, 27354, 27355, 27356);\n script_xref(name:\"RHSA\", value:\"2008:0030\");\n\n script_name(english:\"CentOS 4 : xorg-x11 (CESA-2008:0030)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated xorg-x11 packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\n[Updated 18th January 2008] The original packages distributed with\nthis errata had a bug which could cause some X applications to fail on\n32-bit platforms. We have updated the packages to correct this bug.\n\nThe xorg-x11 packages contain X.Org, an open source implementation of\nthe X Window System. It provides the basic low-level functionality\nthat full-fledged graphical user interfaces are designed upon.\n\nTwo integer overflow flaws were found in the X.Org server's EVI and\nMIT-SHM modules. A malicious authorized client could exploit these\nissues to cause a denial of service (crash), or potentially execute\narbitrary code with root privileges on the X.Org server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the X.Org\nserver handled malformed font files. A malicious local user could\nexploit these issues to potentially execute arbitrary code with the\nprivileges of the X.Org server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the X.Org server's XInput\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially execute arbitrary\ncode with root privileges on the X.Org server. (CVE-2007-6427)\n\nAn input validation flaw was found in the X.Org server's XFree86-Misc\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially execute arbitrary\ncode with root privileges on the X.Org server. (CVE-2007-5760)\n\nAn information disclosure flaw was found in the X.Org server's TOG-CUP\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially view arbitrary\nmemory content within the X server's address space. (CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.Org font server,\nxfs. A user with the ability to connect to the font server could have\nbeen able to cause a denial of service (crash), or potentially execute\narbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the X.Org server's XC-SECURITY extension, that\ncould have allowed a local user to verify the existence of an\narbitrary file, even in directories that are not normally accessible\nto that user. (CVE-2007-5958)\n\nUsers of xorg-x11 should upgrade to these updated packages, which\ncontain backported patches to resolve these issues.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2008-January/014643.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?772661d4\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2008-January/014648.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?1d27d810\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2008-January/014649.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?72ef5b8d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected xorg-x11 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189, 200, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-Mesa-libGL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-Mesa-libGLU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-Xdmx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-Xnest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-Xvfb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-deprecated-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-deprecated-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-font-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-sdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-twm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-xauth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-xdm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:xorg-x11-xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/01/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/01/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-Mesa-libGL-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-Mesa-libGLU-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-Xdmx-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-Xnest-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-Xvfb-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-deprecated-libs-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-deprecated-libs-devel-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-devel-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-doc-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-font-utils-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-libs-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-sdk-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-tools-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-twm-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-xauth-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-xdm-6.8.2-1.EL.33.0.2\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"xorg-x11-xfs-6.8.2-1.EL.33.0.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:17:04", "bulletinFamily": "scanner", "description": "Two integer overflow flaws were found in the XFree86 server's EVI and MIT-SHM modules. A malicious authorized client could exploit these issues to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the XFree86 server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the XFree86 server handled malformed font files. A malicious local user could exploit this issue to potentially execute arbitrary code with the privileges of the XFree86 server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the XFree86 server's XInput extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the XFree86 server. (CVE-2007-6427)\n\nAn information disclosure flaw was found in the XFree86 server's TOG-CUP extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially view arbitrary memory content within the XFree86 server's address space.\n(CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.org font server, xfs. A user with the ability to connect to the font server could have been able to cause a denial of service (crash), or potentially execute arbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the XFree86 server's XC-SECURITY extension, that could have allowed a local user to verify the existence of an arbitrary file, even in directories that are not normally accessible to that user. (CVE-2007-5958)", "modified": "2019-01-07T00:00:00", "id": "SL_20080118_XFREE86_ON_SL3.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60349", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : XFree86 on SL3.x i386/x86_64", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60349);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2019/01/07 9:52:18\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n\n script_name(english:\"Scientific Linux Security Update : XFree86 on SL3.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Two integer overflow flaws were found in the XFree86 server's EVI and\nMIT-SHM modules. A malicious authorized client could exploit these\nissues to cause a denial of service (crash), or potentially execute\narbitrary code with root privileges on the XFree86 server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the XFree86\nserver handled malformed font files. A malicious local user could\nexploit this issue to potentially execute arbitrary code with the\nprivileges of the XFree86 server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the XFree86 server's XInput\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially execute arbitrary\ncode with root privileges on the XFree86 server. (CVE-2007-6427)\n\nAn information disclosure flaw was found in the XFree86 server's\nTOG-CUP extension. A malicious authorized client could exploit this\nissue to cause a denial of service (crash), or potentially view\narbitrary memory content within the XFree86 server's address space.\n(CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.org font server,\nxfs. A user with the ability to connect to the font server could have\nbeen able to cause a denial of service (crash), or potentially execute\narbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the XFree86 server's XC-SECURITY extension, that\ncould have allowed a local user to verify the existence of an\narbitrary file, even in directories that are not normally accessible\nto that user. (CVE-2007-5958)\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0801&L=scientific-linux-errata&T=0&P=1352\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?0f0a0b59\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189, 200, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/01/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-100dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-75dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-14-100dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-14-75dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-15-100dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-15-75dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-2-100dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-2-75dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-9-100dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-ISO8859-9-75dpi-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-Mesa-libGL-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-Mesa-libGLU-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-Xnest-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-Xvfb-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-base-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-cyrillic-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-devel-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-doc-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-font-utils-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-libs-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-libs-data-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-sdk-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-syriac-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-tools-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-truetype-fonts-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-twm-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-xauth-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-xdm-4.3.0-125.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"XFree86-xfs-4.3.0-125.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:19:15", "bulletinFamily": "scanner", "description": "From Red Hat Security Advisory 2008:0029 :\n\nUpdated XFree86 packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1 and 3.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\n[Updated 18th January 2008] The original packages distributed with this errata had a bug which could cause some X applications to fail on 32-bit platforms. We have updated the packages to correct this bug.\n\nXFree86 is an implementation of the X Window System, which provides the core functionality for the Linux graphical desktop.\n\nTwo integer overflow flaws were found in the XFree86 server's EVI and MIT-SHM modules. A malicious authorized client could exploit these issues to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the XFree86 server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the XFree86 server handled malformed font files. A malicious local user could exploit this issue to potentially execute arbitrary code with the privileges of the XFree86 server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the XFree86 server's XInput extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the XFree86 server. (CVE-2007-6427)\n\nAn information disclosure flaw was found in the XFree86 server's TOG-CUP extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially view arbitrary memory content within the XFree86 server's address space.\n(CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.org font server, xfs. A user with the ability to connect to the font server could have been able to cause a denial of service (crash), or potentially execute arbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the XFree86 server's XC-SECURITY extension, that could have allowed a local user to verify the existence of an arbitrary file, even in directories that are not normally accessible to that user. (CVE-2007-5958)\n\nUsers of XFree86 are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.", "modified": "2018-07-18T00:00:00", "id": "ORACLELINUX_ELSA-2008-0029.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67634", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 3 : XFree86 (ELSA-2008-0029)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2008:0029 and \n# Oracle Linux Security Advisory ELSA-2008-0029 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67634);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/07/18 17:43:56\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_bugtraq_id(25898, 27350, 27351, 27352, 27353, 27355, 27356);\n script_xref(name:\"RHSA\", value:\"2008:0029\");\n\n script_name(english:\"Oracle Linux 3 : XFree86 (ELSA-2008-0029)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2008:0029 :\n\nUpdated XFree86 packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 2.1 and 3.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\n[Updated 18th January 2008] The original packages distributed with\nthis errata had a bug which could cause some X applications to fail on\n32-bit platforms. We have updated the packages to correct this bug.\n\nXFree86 is an implementation of the X Window System, which provides\nthe core functionality for the Linux graphical desktop.\n\nTwo integer overflow flaws were found in the XFree86 server's EVI and\nMIT-SHM modules. A malicious authorized client could exploit these\nissues to cause a denial of service (crash), or potentially execute\narbitrary code with root privileges on the XFree86 server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the XFree86\nserver handled malformed font files. A malicious local user could\nexploit this issue to potentially execute arbitrary code with the\nprivileges of the XFree86 server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the XFree86 server's XInput\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially execute arbitrary\ncode with root privileges on the XFree86 server. (CVE-2007-6427)\n\nAn information disclosure flaw was found in the XFree86 server's\nTOG-CUP extension. A malicious authorized client could exploit this\nissue to cause a denial of service (crash), or potentially view\narbitrary memory content within the XFree86 server's address space.\n(CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.org font server,\nxfs. A user with the ability to connect to the font server could have\nbeen able to cause a denial of service (crash), or potentially execute\narbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the XFree86 server's XC-SECURITY extension, that\ncould have allowed a local user to verify the existence of an\narbitrary file, even in directories that are not normally accessible\nto that user. (CVE-2007-5958)\n\nUsers of XFree86 are advised to upgrade to these updated packages,\nwhich contain backported patches to resolve these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2008-January/000493.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected xfree86 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189, 200, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-100dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-75dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-14-100dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-14-75dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-15-100dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-15-75dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-2-100dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-2-75dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-9-100dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-ISO8859-9-75dpi-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-Mesa-libGL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-Mesa-libGLU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-Xnest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-Xvfb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-base-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-cyrillic-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-font-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-libs-data\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-sdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-syriac-fonts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-twm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-xauth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-xdm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:XFree86-xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/01/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/10/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 3\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-14-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-14-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-14-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-14-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-15-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-15-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-15-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-15-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-2-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-2-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-2-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-2-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-9-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-9-100dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-ISO8859-9-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-ISO8859-9-75dpi-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-Mesa-libGL-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-Mesa-libGL-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-Mesa-libGLU-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-Mesa-libGLU-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-Xnest-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-Xnest-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-Xvfb-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-Xvfb-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-base-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-base-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-cyrillic-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-cyrillic-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-devel-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-devel-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-doc-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-doc-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-font-utils-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-font-utils-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-libs-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-libs-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-libs-data-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-libs-data-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-sdk-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-sdk-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-syriac-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-syriac-fonts-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-tools-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-tools-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-twm-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-twm-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-xauth-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-xauth-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-xdm-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-xdm-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"XFree86-xfs-4.3.0-125.EL.0.1\")) flag++;\nif (rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"XFree86-xfs-4.3.0-125.EL.0.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"XFree86 / XFree86-100dpi-fonts / XFree86-75dpi-fonts / etc\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:19:15", "bulletinFamily": "scanner", "description": "From Red Hat Security Advisory 2008:0030 :\n\nUpdated xorg-x11 packages that fix several security issues are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\n[Updated 18th January 2008] The original packages distributed with this errata had a bug which could cause some X applications to fail on 32-bit platforms. We have updated the packages to correct this bug.\n\nThe xorg-x11 packages contain X.Org, an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.\n\nTwo integer overflow flaws were found in the X.Org server's EVI and MIT-SHM modules. A malicious authorized client could exploit these issues to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the X.Org server handled malformed font files. A malicious local user could exploit these issues to potentially execute arbitrary code with the privileges of the X.Org server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the X.Org server's XInput extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-6427)\n\nAn input validation flaw was found in the X.Org server's XFree86-Misc extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially execute arbitrary code with root privileges on the X.Org server. (CVE-2007-5760)\n\nAn information disclosure flaw was found in the X.Org server's TOG-CUP extension. A malicious authorized client could exploit this issue to cause a denial of service (crash), or potentially view arbitrary memory content within the X server's address space. (CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.Org font server, xfs. A user with the ability to connect to the font server could have been able to cause a denial of service (crash), or potentially execute arbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the X.Org server's XC-SECURITY extension, that could have allowed a local user to verify the existence of an arbitrary file, even in directories that are not normally accessible to that user. (CVE-2007-5958)\n\nUsers of xorg-x11 should upgrade to these updated packages, which contain backported patches to resolve these issues.", "modified": "2018-07-18T00:00:00", "id": "ORACLELINUX_ELSA-2008-0030.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67635", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 4 : xorg-x11 (ELSA-2008-0030)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2008:0030 and \n# Oracle Linux Security Advisory ELSA-2008-0030 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67635);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/07/18 17:43:56\");\n\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5760\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_bugtraq_id(25898, 27350, 27351, 27352, 27353, 27354, 27355, 27356);\n script_xref(name:\"RHSA\", value:\"2008:0030\");\n\n script_name(english:\"Oracle Linux 4 : xorg-x11 (ELSA-2008-0030)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2008:0030 :\n\nUpdated xorg-x11 packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\n[Updated 18th January 2008] The original packages distributed with\nthis errata had a bug which could cause some X applications to fail on\n32-bit platforms. We have updated the packages to correct this bug.\n\nThe xorg-x11 packages contain X.Org, an open source implementation of\nthe X Window System. It provides the basic low-level functionality\nthat full-fledged graphical user interfaces are designed upon.\n\nTwo integer overflow flaws were found in the X.Org server's EVI and\nMIT-SHM modules. A malicious authorized client could exploit these\nissues to cause a denial of service (crash), or potentially execute\narbitrary code with root privileges on the X.Org server.\n(CVE-2007-6429)\n\nA heap based buffer overflow flaw was found in the way the X.Org\nserver handled malformed font files. A malicious local user could\nexploit these issues to potentially execute arbitrary code with the\nprivileges of the X.Org server. (CVE-2008-0006)\n\nA memory corruption flaw was found in the X.Org server's XInput\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially execute arbitrary\ncode with root privileges on the X.Org server. (CVE-2007-6427)\n\nAn input validation flaw was found in the X.Org server's XFree86-Misc\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially execute arbitrary\ncode with root privileges on the X.Org server. (CVE-2007-5760)\n\nAn information disclosure flaw was found in the X.Org server's TOG-CUP\nextension. A malicious authorized client could exploit this issue to\ncause a denial of service (crash), or potentially view arbitrary\nmemory content within the X server's address space. (CVE-2007-6428)\n\nAn integer and heap overflow flaw were found in the X.Org font server,\nxfs. A user with the ability to connect to the font server could have\nbeen able to cause a denial of service (crash), or potentially execute\narbitrary code with the permissions of the font server.\n(CVE-2007-4568, CVE-2007-4990)\n\nA flaw was found in the X.Org server's XC-SECURITY extension, that\ncould have allowed a local user to verify the existence of an\narbitrary file, even in directories that are not normally accessible\nto that user. (CVE-2007-5958)\n\nUsers of xorg-x11 should upgrade to these updated packages, which\ncontain backported patches to resolve these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2008-January/000492.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected xorg-x11 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(119, 189, 200, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-Mesa-libGL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-Mesa-libGLU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-Xdmx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-Xnest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-Xvfb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-deprecated-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-deprecated-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-font-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-sdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-twm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-xauth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-xdm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:xorg-x11-xfs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/01/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/10/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 4\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-Mesa-libGL-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-Mesa-libGL-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-Mesa-libGLU-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-Mesa-libGLU-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-Xdmx-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-Xdmx-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-Xnest-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-Xnest-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-Xvfb-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-Xvfb-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-deprecated-libs-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-deprecated-libs-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-deprecated-libs-devel-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-deprecated-libs-devel-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-devel-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-devel-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-doc-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-doc-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-font-utils-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-font-utils-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-libs-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-libs-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-sdk-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-sdk-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-tools-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-tools-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-twm-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-twm-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-xauth-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-xauth-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-xdm-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-xdm-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"xorg-x11-xfs-6.8.2-1.EL.33.0.1.0.1\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"xorg-x11-xfs-6.8.2-1.EL.33.0.1.0.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xorg-x11 / xorg-x11-Mesa-libGL / xorg-x11-Mesa-libGLU / etc\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:23", "bulletinFamily": "software", "description": "Multiple Vendor X Font Server Multiple Vulnerabilities\r\n\r\niDefense Security Advisory 10.02.07\r\nhttp://labs.idefense.com/intelligence/vulnerabilities/\r\nOct 02, 2007\r\n\r\nI. BACKGROUND\r\n\r\nThe X Window System (or X11) is a graphical windowing system used on\r\nUnix-like systems. It is based on a client/server model. The X Window\r\nSystem font server (xfs) is used to render fonts for the X server. More\r\ninformation can be found at the following URLs.\r\n\r\nhttp://en.wikipedia.org/wiki/X_Window_System\r\n\r\nhttp://www.x.org/wiki/\r\n\r\nII. DESCRIPTION\r\n\r\nRemote exploitation of a multiple vulnerabilities in X.Org Foundation's\r\nX Font Server, as included in various vendors' operating system\r\ndistributions, could allow an attacker to execute arbitrary code.\r\n\r\nAn integer overflow vulnerability exists within the handlers for the\r\nQueryXBitmaps and QueryXExtents protocol requests. Both requests result\r\nin a call to the build_range() function. This function takes a 32bit\r\ninteger from the request, and uses it in an arithmetic operation that\r\ncalculates the size of a dynamic buffer. This calculation can overflow,\r\nwhich leads to an improperly sized memory allocation. This results in a\r\nheap overflow.\r\n\r\nAdditionally, a heap corruption vulnerability exists within the handlers\r\nfor the QueryXBitmaps and QueryXExtents protocol requests. Both requests\r\nresult in a call to the swap_char2b() function. This function takes a\r\n32bit integer from the request, and uses it as the number of bytes to\r\nswap in the request buffer. This allows an attacker to swap an\r\narbitrary number of bytes on the heap.\r\n\r\nIII. ANALYSIS\r\n\r\nExploitation of these vulnerabilities could result in the execution of\r\narbitrary code with the privileges of the X Font Server, usually 'xfs'.\r\n\r\n On current versions of Solaris, these vulnerabilities are remotely\r\nexploitable. The XFS service is turned on by default, and listens on\r\nTCP port 7100. On modern Linux systems, these vulnerabilities are only\r\nlocally exploitable since the server is configured to listen on a UNIX\r\nsocket only.\r\n\r\nIV. DETECTION\r\n\r\niDefense has confirmed the existence of these vulnerabilities in XFS\r\nversion X11R7.2-1.0.4. Previous versions may also be affected.\r\n\r\nV. WORKAROUND\r\n\r\nOn Solaris, stop XFS from listening remotely by disabling it via the\r\nservice manager.\r\n\r\nVI. VENDOR RESPONSE\r\n\r\nThe X.Org team has addressed these vulnerabilities with the release of\r\nXFS version 1.0.5. Additionally, a patch for version 1.0.4 has been\r\nmade available. For more information, consult the X.Org advisory at the\r\nfollowing URL.\r\n\r\nhttp://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html\r\n\r\nVII. CVE INFORMATION\r\n\r\nThe Common Vulnerabilities and Exposures (CVE) project has assigned the\r\nname CVE-2007-4568 to this issue. This is a candidate for inclusion in\r\nthe CVE list (http://cve.mitre.org/), which standardizes names for\r\nsecurity problems.\r\n\r\nVIII. DISCLOSURE TIMELINE\r\n\r\n09/05/2007 Initial vendor notification\r\n09/08/2007 Initial vendor response\r\n10/02/2007 Public disclosure\r\n\r\nIX. CREDIT\r\n\r\nThese vulnerabilities were discovered by Sean Larsson of VeriSign\r\niDefense Labs.\r\n\r\nGet paid for vulnerability research\r\nhttp://labs.idefense.com/methodology/vulnerability/vcp.php\r\n\r\nFree tools, research and upcoming events\r\nhttp://labs.idefense.com/\r\n\r\nX. LEGAL NOTICES\r\n\r\nCopyright \u00a9 2007 iDefense, Inc.\r\n\r\nPermission is granted for the redistribution of this alert\r\nelectronically. It may not be edited in any way without the express\r\nwritten consent of iDefense. If you wish to reprint the whole or any\r\npart of this alert in any other medium other than electronically,\r\nplease e-mail customerservice@idefense.com for permission.\r\n\r\nDisclaimer: The information in the advisory is believed to be accurate\r\nat the time of publishing based on currently available information. Use\r\nof the information constitutes acceptance for use in an AS IS condition.\r\n There are no warranties with regard to this information. Neither the\r\nauthor nor the publisher accepts any liability for any direct,\r\nindirect, or consequential loss or damage arising from use of, or\r\nreliance on, this information.", "modified": "2007-10-04T00:00:00", "published": "2007-10-04T00:00:00", "id": "SECURITYVULNS:DOC:18121", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:18121", "title": "iDefense Security Advisory 10.02.07: Multiple Vendor X Font Server Multiple Vulnerabilities", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:27", "bulletinFamily": "software", "description": "Integer overflow in QueryXBitmaps / QueryXExtents requests.", "modified": "2007-10-04T00:00:00", "published": "2007-10-04T00:00:00", "id": "SECURITYVULNS:VULN:8214", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:8214", "title": "X11 X Font Server integer overflow", "type": "securityvulns", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "openvas": [{"lastseen": "2017-07-02T21:10:23", "bulletinFamily": "scanner", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "modified": "2016-10-04T00:00:00", "published": "2008-09-04T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=58787", "id": "OPENVAS:58787", "title": "FreeBSD Ports: xfs", "type": "openvas", "sourceData": "#\n#VID a5f667db-7596-11dc-8b7a-0019b944b34e\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from vuxml or freebsd advisories\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following package is affected: xfs\n\n=====\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\n\nhttp://lists.freedesktop.org/archives/xorg/2007-October/028899.html\nhttp://www.vuxml.org/freebsd/a5f667db-7596-11dc-8b7a-0019b944b34e.html\";\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\nif(description)\n{\n script_id(58787);\n script_version(\"$Revision: 4203 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-10-04 07:30:30 +0200 (Tue, 04 Oct 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)\");\n script_cve_id(\"CVE-2007-4568\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_name(\"FreeBSD Ports: xfs\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\n\ntxt = \"\";\nvuln = 0;\nbver = portver(pkg:\"xfs\");\nif(!isnull(bver) && revcomp(a:bver, b:\"1.0.5,1\")<0) {\n txt += 'Package xfs version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:56:55", "bulletinFamily": "scanner", "description": "Check for the Version of xorg-x11-xfs", "modified": "2017-07-10T00:00:00", "published": "2009-02-27T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=861213", "id": "OPENVAS:861213", "title": "Fedora Update for xorg-x11-xfs FEDORA-2007-4263", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xorg-x11-xfs FEDORA-2007-4263\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"xorg-x11-xfs on Fedora 7\";\ntag_insight = \"X.Org X11 xfs font server\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html\");\n script_id(861213);\n script_version(\"$Revision: 6623 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:10:20 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-02-27 16:27:46 +0100 (Fri, 27 Feb 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"FEDORA\", value: \"2007-4263\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\");\n script_name( \"Fedora Update for xorg-x11-xfs FEDORA-2007-4263\");\n\n script_summary(\"Check for the Version of xorg-x11-xfs\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC7\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs\", rpm:\"xorg-x11-xfs~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs-debuginfo\", rpm:\"xorg-x11-xfs-debuginfo~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs\", rpm:\"xorg-x11-xfs~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs-utils\", rpm:\"xorg-x11-xfs-utils~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs\", rpm:\"xorg-x11-xfs~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs-utils\", rpm:\"xorg-x11-xfs-utils~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs-debuginfo\", rpm:\"xorg-x11-xfs-debuginfo~1.0.5~1.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-04-09T11:38:57", "bulletinFamily": "scanner", "description": "Check for the Version of xfs", "modified": "2018-04-06T00:00:00", "published": "2009-04-09T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310830081", "id": "OPENVAS:1361412562310830081", "title": "Mandriva Update for xfs MDKSA-2007:210 (xfs)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for xfs MDKSA-2007:210 (xfs)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Integer overflow in the build_range function in X.Org X Font Server\n (xfs) before 1.0.5 allows context-dependent attackers to execute\n arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol\n requests with crafted size values, which triggers a heap-based buffer\n overflow. (CVE-2007-4568)\n\n The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5\n allows context-dependent attackers to execute arbitrary code via (1)\n QueryXBitmaps and (2) QueryXExtents protocol requests with crafted\n size values that specify an arbitrary number of bytes to be swapped\n on the heap, which triggers heap corruption. (CVE-2007-4990)\n \n Updated package fixes these issues.\";\n\ntag_affected = \"xfs on Mandriva Linux 2007.0,\n Mandriva Linux 2007.0/X86_64,\n Mandriva Linux 2007.1,\n Mandriva Linux 2007.1/X86_64\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2007-11/msg00012.php\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.830081\");\n script_version(\"$Revision: 9370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:53:14 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-09 14:00:25 +0200 (Thu, 09 Apr 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"MDKSA\", value: \"2007:210\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\");\n script_name( \"Mandriva Update for xfs MDKSA-2007:210 (xfs)\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of xfs\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2007.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"xfs\", rpm:\"xfs~1.0.4~2.1mdv2007.1\", rls:\"MNDK_2007.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_2007.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"xfs\", rpm:\"xfs~1.0.2~13.1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:56:11", "bulletinFamily": "scanner", "description": "Check for the Version of xfs", "modified": "2017-07-06T00:00:00", "published": "2009-04-09T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=830081", "id": "OPENVAS:830081", "title": "Mandriva Update for xfs MDKSA-2007:210 (xfs)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for xfs MDKSA-2007:210 (xfs)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Integer overflow in the build_range function in X.Org X Font Server\n (xfs) before 1.0.5 allows context-dependent attackers to execute\n arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol\n requests with crafted size values, which triggers a heap-based buffer\n overflow. (CVE-2007-4568)\n\n The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5\n allows context-dependent attackers to execute arbitrary code via (1)\n QueryXBitmaps and (2) QueryXExtents protocol requests with crafted\n size values that specify an arbitrary number of bytes to be swapped\n on the heap, which triggers heap corruption. (CVE-2007-4990)\n \n Updated package fixes these issues.\";\n\ntag_affected = \"xfs on Mandriva Linux 2007.0,\n Mandriva Linux 2007.0/X86_64,\n Mandriva Linux 2007.1,\n Mandriva Linux 2007.1/X86_64\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2007-11/msg00012.php\");\n script_id(830081);\n script_version(\"$Revision: 6568 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 15:04:21 +0200 (Thu, 06 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-09 14:00:25 +0200 (Thu, 09 Apr 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"MDKSA\", value: \"2007:210\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\");\n script_name( \"Mandriva Update for xfs MDKSA-2007:210 (xfs)\");\n\n script_summary(\"Check for the Version of xfs\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2007.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"xfs\", rpm:\"xfs~1.0.4~2.1mdv2007.1\", rls:\"MNDK_2007.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_2007.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"xfs\", rpm:\"xfs~1.0.2~13.1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:49:48", "bulletinFamily": "scanner", "description": "The remote host is missing updates announced in\nadvisory GLSA 200710-11.", "modified": "2017-07-07T00:00:00", "published": "2008-09-24T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=58672", "id": "OPENVAS:58672", "title": "Gentoo Security Advisory GLSA 200710-11 (xfs)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Three vulnerabilities have been discovered in the X Font Server possibly\nallowing local attackers to gain elevated privileges.\";\ntag_solution = \"All X Font Server users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=x11-apps/xfs-1.0.5'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200710-11\nhttp://bugs.gentoo.org/show_bug.cgi?id=185660\nhttp://bugs.gentoo.org/show_bug.cgi?id=194606\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200710-11.\";\n\n \n\nif(description)\n{\n script_id(58672);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2007-3103\", \"CVE-2007-4568\", \"CVE-2007-4990\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Gentoo Security Advisory GLSA 200710-11 (xfs)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"x11-apps/xfs\", unaffected: make_list(\"ge 1.0.5\"), vulnerable: make_list(\"lt 1.0.5\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-12-12T11:20:47", "bulletinFamily": "scanner", "description": "Check for the Version of XOrg", "modified": "2017-12-08T00:00:00", "published": "2009-01-28T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850077", "id": "OPENVAS:850077", "title": "SuSE Update for XOrg SUSE-SA:2007:054", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2007_054.nasl 8050 2017-12-08 09:34:29Z santu $\n#\n# SuSE Update for XOrg SUSE-SA:2007:054\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Xorg server was updated to fix 2 problems in the X FontServer found\n in Xorg versions starting with 6.8 and in the Composite extension.\n\n SUSE Linux 10.0,10.1, openSUSE 10.2, 10.3 and SUSE Linux Enterprise 10\n are affected by these 3 problems, older distributions are not.\n\n Following issues were fixed:\n IDEF2708 / CVE-2007-4989: X Font Server build_range() Integer Overflow Vulnerability.\n IDEF2709 / CVE-2007-4990: X Font Server swap_char2b() Heap Overflow Vulnerability\n CVE-2007-4730: A buffer overflow in the Composite extension.\n\n These can be exploited by logged in users to potentially execute code\n in the X server or xfs, which are running as root.\";\n\ntag_impact = \"local privilege escalation\";\ntag_affected = \"XOrg on SUSE LINUX 10.1, openSUSE 10.2, openSUSE 10.3, SUSE Linux Enterprise Desktop 10 SP1, SLE SDK 10 SP1, SUSE Linux Enterprise Server 10 SP1\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_id(850077);\n script_version(\"$Revision: 8050 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 10:34:29 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-28 13:40:10 +0100 (Wed, 28 Jan 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"SUSE-SA\", value: \"2007-054\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-4730\");\n script_name( \"SuSE Update for XOrg SUSE-SA:2007:054\");\n\n script_summary(\"Check for the Version of XOrg\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE10.3\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~7.2~135.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvnc\", rpm:\"xorg-x11-Xvnc~7.1~91.1\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~7.2~103.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~7.2~56.1\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~7.2~103.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server\", rpm:\"xorg-x11-server~7.2~143.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server-extra\", rpm:\"xorg-x11-server-extra~7.2~143.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server-sdk\", rpm:\"xorg-x11-server-sdk~7.2~143.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel-32bit\", rpm:\"xorg-x11-devel-32bit~7.2~103.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs-32bit\", rpm:\"xorg-x11-libs-32bit~7.2~103.2\", rls:\"openSUSE10.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"openSUSE10.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~7.2~28\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvnc\", rpm:\"xorg-x11-Xvnc~7.1~33.4\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~7.2~23\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~7.2~10\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~7.2~23\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server\", rpm:\"xorg-x11-server~7.2~30.8\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server-sdk\", rpm:\"xorg-x11-server-sdk~7.2~30.8\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel-32bit\", rpm:\"xorg-x11-devel-32bit~7.2~23\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs-32bit\", rpm:\"xorg-x11-libs-32bit~7.2~23\", rls:\"openSUSE10.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"LES10SP1\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-sdk\", rpm:\"xorg-x11-sdk~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvfb\", rpm:\"xorg-x11-Xvfb~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel-32bit\", rpm:\"xorg-x11-devel-32bit~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-100dpi\", rpm:\"xorg-x11-fonts-100dpi~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-75dpi\", rpm:\"xorg-x11-fonts-75dpi~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-cyrillic\", rpm:\"xorg-x11-fonts-cyrillic~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-scalable\", rpm:\"xorg-x11-fonts-scalable~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-syriac\", rpm:\"xorg-x11-fonts-syriac~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs-32bit\", rpm:\"xorg-x11-libs-32bit~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-man\", rpm:\"xorg-x11-man~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server\", rpm:\"xorg-x11-server~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server-glx\", rpm:\"xorg-x11-server-glx~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xnest\", rpm:\"xorg-x11-Xnest~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvnc\", rpm:\"xorg-x11-Xvnc~6.9.0~50.52\", rls:\"LES10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLESDk10SP1\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-sdk\", rpm:\"xorg-x11-sdk~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvfb\", rpm:\"xorg-x11-Xvfb~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel-32bit\", rpm:\"xorg-x11-devel-32bit~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-100dpi\", rpm:\"xorg-x11-fonts-100dpi~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-75dpi\", rpm:\"xorg-x11-fonts-75dpi~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-cyrillic\", rpm:\"xorg-x11-fonts-cyrillic~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-scalable\", rpm:\"xorg-x11-fonts-scalable~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-syriac\", rpm:\"xorg-x11-fonts-syriac~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs-32bit\", rpm:\"xorg-x11-libs-32bit~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-man\", rpm:\"xorg-x11-man~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server\", rpm:\"xorg-x11-server~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server-glx\", rpm:\"xorg-x11-server-glx~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xnest\", rpm:\"xorg-x11-Xnest~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvnc\", rpm:\"xorg-x11-Xvnc~6.9.0~50.52\", rls:\"SLESDk10SP1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SL10.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xnest\", rpm:\"xorg-x11-Xnest~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xprt\", rpm:\"xorg-x11-Xprt~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvfb\", rpm:\"xorg-x11-Xvfb~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvnc\", rpm:\"xorg-x11-Xvnc~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-driver-options\", rpm:\"xorg-x11-driver-options~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-100dpi\", rpm:\"xorg-x11-fonts-100dpi~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-75dpi\", rpm:\"xorg-x11-fonts-75dpi~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-cyrillic\", rpm:\"xorg-x11-fonts-cyrillic~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-scalable\", rpm:\"xorg-x11-fonts-scalable~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-fonts-syriac\", rpm:\"xorg-x11-fonts-syriac~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-man\", rpm:\"xorg-x11-man~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-sdk\", rpm:\"xorg-x11-sdk~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server\", rpm:\"xorg-x11-server~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-server-glx\", rpm:\"xorg-x11-server-glx~6.9.0~50.52\", rls:\"SL10.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-04-09T11:39:16", "bulletinFamily": "scanner", "description": "Check for the Version of xorg-x11", "modified": "2018-04-06T00:00:00", "published": "2009-02-27T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880075", "id": "OPENVAS:1361412562310880075", "type": "openvas", "title": "CentOS Update for xorg-x11 CESA-2008:0030 centos4 x86_64", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for xorg-x11 CESA-2008:0030 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The xorg-x11 packages contain X.Org, an open source implementation of the X\n Window System. It provides the basic low-level functionality that\n full-fledged graphical user interfaces are designed upon.\n\n Two integer overflow flaws were found in the X.Org server's EVI and MIT-SHM\n modules. A malicious authorized client could exploit these issues to cause\n a denial of service (crash), or potentially execute arbitrary code with\n root privileges on the X.Org server. (CVE-2007-6429)\n \n A heap based buffer overflow flaw was found in the way the X.Org server\n handled malformed font files. A malicious local user could exploit these\n issues to potentially execute arbitrary code with the privileges of the\n X.Org server. (CVE-2008-0006)\n \n A memory corruption flaw was found in the X.Org server's XInput extension.\n A malicious authorized client could exploit this issue to cause a denial of\n service (crash), or potentially execute arbitrary code with root privileges\n on the X.Org server. (CVE-2007-6427)\n \n An input validation flaw was found in the X.Org server's XFree86-Misc\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially execute arbitrary code with\n root privileges on the X.Org server. (CVE-2007-5760)\n \n An information disclosure flaw was found in the X.Org server's TOG-CUP\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially view arbitrary memory content\n within the X server's address space. (CVE-2007-6428)\n \n An integer and heap overflow flaw were found in the X.Org font server, xfs.\n A user with the ability to connect to the font server could have been able\n to cause a denial of service (crash), or potentially execute arbitrary code\n with the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\n \n A flaw was found in the X.Org server's XC-SECURITY extension, that could\n have allowed a local user to verify the existence of an arbitrary file,\n even in directories that are not normally accessible to that user.\n (CVE-2007-5958)\n \n Users of xorg-x11 should upgrade to these updated packages, which contain\n backported patches to resolve these issues.\";\n\ntag_affected = \"xorg-x11 on CentOS 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2008-January/014649.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.880075\");\n script_version(\"$Revision: 9370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:53:14 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-02-27 09:02:20 +0100 (Fri, 27 Feb 2009)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2008:0030\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5760\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_name( \"CentOS Update for xorg-x11 CESA-2008:0030 centos4 x86_64\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of xorg-x11\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-deprecated-libs\", rpm:\"xorg-x11-deprecated-libs~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-deprecated-libs-devel\", rpm:\"xorg-x11-deprecated-libs-devel~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-font-utils\", rpm:\"xorg-x11-font-utils~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Mesa-libGL\", rpm:\"xorg-x11-Mesa-libGL~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Mesa-libGLU\", rpm:\"xorg-x11-Mesa-libGLU~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-sdk\", rpm:\"xorg-x11-sdk~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-tools\", rpm:\"xorg-x11-tools~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-twm\", rpm:\"xorg-x11-twm~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xauth\", rpm:\"xorg-x11-xauth~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xdm\", rpm:\"xorg-x11-xdm~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xdmx\", rpm:\"xorg-x11-Xdmx~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs\", rpm:\"xorg-x11-xfs~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xnest\", rpm:\"xorg-x11-Xnest~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvfb\", rpm:\"xorg-x11-Xvfb~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:56:25", "bulletinFamily": "scanner", "description": "Check for the Version of xorg-x11", "modified": "2017-07-10T00:00:00", "published": "2009-02-27T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=880013", "id": "OPENVAS:880013", "title": "CentOS Update for xorg-x11 CESA-2008:0030 centos4 i386", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for xorg-x11 CESA-2008:0030 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The xorg-x11 packages contain X.Org, an open source implementation of the X\n Window System. It provides the basic low-level functionality that\n full-fledged graphical user interfaces are designed upon.\n\n Two integer overflow flaws were found in the X.Org server's EVI and MIT-SHM\n modules. A malicious authorized client could exploit these issues to cause\n a denial of service (crash), or potentially execute arbitrary code with\n root privileges on the X.Org server. (CVE-2007-6429)\n \n A heap based buffer overflow flaw was found in the way the X.Org server\n handled malformed font files. A malicious local user could exploit these\n issues to potentially execute arbitrary code with the privileges of the\n X.Org server. (CVE-2008-0006)\n \n A memory corruption flaw was found in the X.Org server's XInput extension.\n A malicious authorized client could exploit this issue to cause a denial of\n service (crash), or potentially execute arbitrary code with root privileges\n on the X.Org server. (CVE-2007-6427)\n \n An input validation flaw was found in the X.Org server's XFree86-Misc\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially execute arbitrary code with\n root privileges on the X.Org server. (CVE-2007-5760)\n \n An information disclosure flaw was found in the X.Org server's TOG-CUP\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially view arbitrary memory content\n within the X server's address space. (CVE-2007-6428)\n \n An integer and heap overflow flaw were found in the X.Org font server, xfs.\n A user with the ability to connect to the font server could have been able\n to cause a denial of service (crash), or potentially execute arbitrary code\n with the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\n \n A flaw was found in the X.Org server's XC-SECURITY extension, that could\n have allowed a local user to verify the existence of an arbitrary file,\n even in directories that are not normally accessible to that user.\n (CVE-2007-5958)\n \n Users of xorg-x11 should upgrade to these updated packages, which contain\n backported patches to resolve these issues.\";\n\ntag_affected = \"xorg-x11 on CentOS 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2008-January/014648.html\");\n script_id(880013);\n script_version(\"$Revision: 6651 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:45:21 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-02-27 09:02:20 +0100 (Fri, 27 Feb 2009)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2008:0030\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5760\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_name( \"CentOS Update for xorg-x11 CESA-2008:0030 centos4 i386\");\n\n script_summary(\"Check for the Version of xorg-x11\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"xorg-x11\", rpm:\"xorg-x11~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-deprecated-libs\", rpm:\"xorg-x11-deprecated-libs~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-deprecated-libs-devel\", rpm:\"xorg-x11-deprecated-libs-devel~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-devel\", rpm:\"xorg-x11-devel~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-doc\", rpm:\"xorg-x11-doc~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-font-utils\", rpm:\"xorg-x11-font-utils~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-libs\", rpm:\"xorg-x11-libs~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Mesa-libGL\", rpm:\"xorg-x11-Mesa-libGL~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Mesa-libGLU\", rpm:\"xorg-x11-Mesa-libGLU~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-sdk\", rpm:\"xorg-x11-sdk~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-tools\", rpm:\"xorg-x11-tools~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-twm\", rpm:\"xorg-x11-twm~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xauth\", rpm:\"xorg-x11-xauth~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xdm\", rpm:\"xorg-x11-xdm~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xdmx\", rpm:\"xorg-x11-Xdmx~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-xfs\", rpm:\"xorg-x11-xfs~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xnest\", rpm:\"xorg-x11-Xnest~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xorg-x11-Xvfb\", rpm:\"xorg-x11-Xvfb~6.8.2~1.EL.33.0.2\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-04-09T11:38:58", "bulletinFamily": "scanner", "description": "Check for the Version of XFree86", "modified": "2018-04-06T00:00:00", "published": "2009-03-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870005", "id": "OPENVAS:1361412562310870005", "title": "RedHat Update for XFree86 RHSA-2008:0029-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for XFree86 RHSA-2008:0029-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"XFree86 is an implementation of the X Window System, which provides the\n core functionality for the Linux graphical desktop.\n\n Two integer overflow flaws were found in the XFree86 server's EVI and\n MIT-SHM modules. A malicious authorized client could exploit these issues\n to cause a denial of service (crash), or potentially execute arbitrary code\n with root privileges on the XFree86 server. (CVE-2007-6429)\n \n A heap based buffer overflow flaw was found in the way the XFree86 server\n handled malformed font files. A malicious local user could exploit this\n issue to potentially execute arbitrary code with the privileges of the\n XFree86 server. (CVE-2008-0006)\n \n A memory corruption flaw was found in the XFree86 server's XInput\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially execute arbitrary code with\n root privileges on the XFree86 server. (CVE-2007-6427)\n \n An information disclosure flaw was found in the XFree86 server's TOG-CUP\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially view arbitrary memory content\n within the XFree86 server's address space. (CVE-2007-6428)\n \n An integer and heap overflow flaw were found in the X.org font server, xfs.\n A user with the ability to connect to the font server could have been able\n to cause a denial of service (crash), or potentially execute arbitrary code\n with the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\n \n A flaw was found in the XFree86 server's XC-SECURITY extension, that could\n have allowed a local user to verify the existence of an arbitrary file,\n even in directories that are not normally accessible to that user.\n (CVE-2007-5958)\n \n Users of XFree86 are advised to upgrade to these updated packages, which\n contain backported patches to resolve these issues.\";\n\ntag_affected = \"XFree86 on Red Hat Enterprise Linux AS (Advanced Server) version 2.1,\n Red Hat Enterprise Linux ES version 2.1,\n Red Hat Enterprise Linux WS version 2.1,\n Red Hat Enterprise Linux AS version 3,\n Red Hat Enterprise Linux ES version 3,\n Red Hat Enterprise Linux WS version 3\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2008-January/msg00013.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870005\");\n script_version(\"$Revision: 9370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:53:14 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-03-06 07:30:35 +0100 (Fri, 06 Mar 2009)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"RHSA\", value: \"2008:0029-01\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_name( \"RedHat Update for XFree86 RHSA-2008:0029-01\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of XFree86\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_2.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"XFree86-100dpi-fonts\", rpm:\"XFree86-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86\", rpm:\"XFree86~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-75dpi-fonts\", rpm:\"XFree86-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-100dpi-fonts\", rpm:\"XFree86-ISO8859-15-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-75dpi-fonts\", rpm:\"XFree86-ISO8859-15-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-100dpi-fonts\", rpm:\"XFree86-ISO8859-2-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-75dpi-fonts\", rpm:\"XFree86-ISO8859-2-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-100dpi-fonts\", rpm:\"XFree86-ISO8859-9-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-75dpi-fonts\", rpm:\"XFree86-ISO8859-9-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xnest\", rpm:\"XFree86-Xnest~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xvfb\", rpm:\"XFree86-Xvfb~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-cyrillic-fonts\", rpm:\"XFree86-cyrillic-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-devel\", rpm:\"XFree86-devel~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-doc\", rpm:\"XFree86-doc~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-libs\", rpm:\"XFree86-libs~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-tools\", rpm:\"XFree86-tools~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-twm\", rpm:\"XFree86-twm~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xdm\", rpm:\"XFree86-xdm~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xf86cfg\", rpm:\"XFree86-xf86cfg~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xfs\", rpm:\"XFree86-xfs~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"RHENT_3\")\n{\n\n if ((res = isrpmvuln(pkg:\"XFree86-100dpi-fonts\", rpm:\"XFree86-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86\", rpm:\"XFree86~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-75dpi-fonts\", rpm:\"XFree86-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-14-100dpi-fonts\", rpm:\"XFree86-ISO8859-14-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-14-75dpi-fonts\", rpm:\"XFree86-ISO8859-14-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-100dpi-fonts\", rpm:\"XFree86-ISO8859-15-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-75dpi-fonts\", rpm:\"XFree86-ISO8859-15-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-100dpi-fonts\", rpm:\"XFree86-ISO8859-2-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-75dpi-fonts\", rpm:\"XFree86-ISO8859-2-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-100dpi-fonts\", rpm:\"XFree86-ISO8859-9-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-75dpi-fonts\", rpm:\"XFree86-ISO8859-9-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Mesa-libGL\", rpm:\"XFree86-Mesa-libGL~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Mesa-libGLU\", rpm:\"XFree86-Mesa-libGLU~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xnest\", rpm:\"XFree86-Xnest~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xvfb\", rpm:\"XFree86-Xvfb~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-base-fonts\", rpm:\"XFree86-base-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-cyrillic-fonts\", rpm:\"XFree86-cyrillic-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-devel\", rpm:\"XFree86-devel~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-doc\", rpm:\"XFree86-doc~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-font-utils\", rpm:\"XFree86-font-utils~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-libs\", rpm:\"XFree86-libs~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-libs-data\", rpm:\"XFree86-libs-data~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-sdk\", rpm:\"XFree86-sdk~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-syriac-fonts\", rpm:\"XFree86-syriac-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-tools\", rpm:\"XFree86-tools~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-truetype-fonts\", rpm:\"XFree86-truetype-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-twm\", rpm:\"XFree86-twm~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xauth\", rpm:\"XFree86-xauth~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xdm\", rpm:\"XFree86-xdm~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xfs\", rpm:\"XFree86-xfs~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-27T10:55:47", "bulletinFamily": "scanner", "description": "Check for the Version of XFree86", "modified": "2017-07-12T00:00:00", "published": "2009-03-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870005", "id": "OPENVAS:870005", "title": "RedHat Update for XFree86 RHSA-2008:0029-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for XFree86 RHSA-2008:0029-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"XFree86 is an implementation of the X Window System, which provides the\n core functionality for the Linux graphical desktop.\n\n Two integer overflow flaws were found in the XFree86 server's EVI and\n MIT-SHM modules. A malicious authorized client could exploit these issues\n to cause a denial of service (crash), or potentially execute arbitrary code\n with root privileges on the XFree86 server. (CVE-2007-6429)\n \n A heap based buffer overflow flaw was found in the way the XFree86 server\n handled malformed font files. A malicious local user could exploit this\n issue to potentially execute arbitrary code with the privileges of the\n XFree86 server. (CVE-2008-0006)\n \n A memory corruption flaw was found in the XFree86 server's XInput\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially execute arbitrary code with\n root privileges on the XFree86 server. (CVE-2007-6427)\n \n An information disclosure flaw was found in the XFree86 server's TOG-CUP\n extension. A malicious authorized client could exploit this issue to cause\n a denial of service (crash), or potentially view arbitrary memory content\n within the XFree86 server's address space. (CVE-2007-6428)\n \n An integer and heap overflow flaw were found in the X.org font server, xfs.\n A user with the ability to connect to the font server could have been able\n to cause a denial of service (crash), or potentially execute arbitrary code\n with the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\n \n A flaw was found in the XFree86 server's XC-SECURITY extension, that could\n have allowed a local user to verify the existence of an arbitrary file,\n even in directories that are not normally accessible to that user.\n (CVE-2007-5958)\n \n Users of XFree86 are advised to upgrade to these updated packages, which\n contain backported patches to resolve these issues.\";\n\ntag_affected = \"XFree86 on Red Hat Enterprise Linux AS (Advanced Server) version 2.1,\n Red Hat Enterprise Linux ES version 2.1,\n Red Hat Enterprise Linux WS version 2.1,\n Red Hat Enterprise Linux AS version 3,\n Red Hat Enterprise Linux ES version 3,\n Red Hat Enterprise Linux WS version 3\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2008-January/msg00013.html\");\n script_id(870005);\n script_version(\"$Revision: 6683 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:41:57 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-03-06 07:30:35 +0100 (Fri, 06 Mar 2009)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"RHSA\", value: \"2008:0029-01\");\n script_cve_id(\"CVE-2007-4568\", \"CVE-2007-4990\", \"CVE-2007-5958\", \"CVE-2007-6427\", \"CVE-2007-6428\", \"CVE-2007-6429\", \"CVE-2008-0006\");\n script_name( \"RedHat Update for XFree86 RHSA-2008:0029-01\");\n\n script_summary(\"Check for the Version of XFree86\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_2.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"XFree86-100dpi-fonts\", rpm:\"XFree86-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86\", rpm:\"XFree86~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-75dpi-fonts\", rpm:\"XFree86-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-100dpi-fonts\", rpm:\"XFree86-ISO8859-15-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-75dpi-fonts\", rpm:\"XFree86-ISO8859-15-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-100dpi-fonts\", rpm:\"XFree86-ISO8859-2-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-75dpi-fonts\", rpm:\"XFree86-ISO8859-2-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-100dpi-fonts\", rpm:\"XFree86-ISO8859-9-100dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-75dpi-fonts\", rpm:\"XFree86-ISO8859-9-75dpi-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xnest\", rpm:\"XFree86-Xnest~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xvfb\", rpm:\"XFree86-Xvfb~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-cyrillic-fonts\", rpm:\"XFree86-cyrillic-fonts~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-devel\", rpm:\"XFree86-devel~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-doc\", rpm:\"XFree86-doc~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-libs\", rpm:\"XFree86-libs~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-tools\", rpm:\"XFree86-tools~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-twm\", rpm:\"XFree86-twm~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xdm\", rpm:\"XFree86-xdm~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xf86cfg\", rpm:\"XFree86-xf86cfg~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xfs\", rpm:\"XFree86-xfs~4.1.0~85.EL\", rls:\"RHENT_2.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"RHENT_3\")\n{\n\n if ((res = isrpmvuln(pkg:\"XFree86-100dpi-fonts\", rpm:\"XFree86-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86\", rpm:\"XFree86~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-75dpi-fonts\", rpm:\"XFree86-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-14-100dpi-fonts\", rpm:\"XFree86-ISO8859-14-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-14-75dpi-fonts\", rpm:\"XFree86-ISO8859-14-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-100dpi-fonts\", rpm:\"XFree86-ISO8859-15-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-15-75dpi-fonts\", rpm:\"XFree86-ISO8859-15-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-100dpi-fonts\", rpm:\"XFree86-ISO8859-2-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-2-75dpi-fonts\", rpm:\"XFree86-ISO8859-2-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-100dpi-fonts\", rpm:\"XFree86-ISO8859-9-100dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-ISO8859-9-75dpi-fonts\", rpm:\"XFree86-ISO8859-9-75dpi-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Mesa-libGL\", rpm:\"XFree86-Mesa-libGL~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Mesa-libGLU\", rpm:\"XFree86-Mesa-libGLU~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xnest\", rpm:\"XFree86-Xnest~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-Xvfb\", rpm:\"XFree86-Xvfb~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-base-fonts\", rpm:\"XFree86-base-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-cyrillic-fonts\", rpm:\"XFree86-cyrillic-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-devel\", rpm:\"XFree86-devel~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-doc\", rpm:\"XFree86-doc~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-font-utils\", rpm:\"XFree86-font-utils~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-libs\", rpm:\"XFree86-libs~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-libs-data\", rpm:\"XFree86-libs-data~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-sdk\", rpm:\"XFree86-sdk~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-syriac-fonts\", rpm:\"XFree86-syriac-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-tools\", rpm:\"XFree86-tools~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-truetype-fonts\", rpm:\"XFree86-truetype-fonts~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-twm\", rpm:\"XFree86-twm~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xauth\", rpm:\"XFree86-xauth~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xdm\", rpm:\"XFree86-xdm~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"XFree86-xfs\", rpm:\"XFree86-xfs~4.3.0~125.EL\", rls:\"RHENT_3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:33", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1018763\n[Secunia Advisory ID:27240](https://secuniaresearch.flexerasoftware.com/advisories/27240/)\n[Secunia Advisory ID:27946](https://secuniaresearch.flexerasoftware.com/advisories/27946/)\n[Secunia Advisory ID:27176](https://secuniaresearch.flexerasoftware.com/advisories/27176/)\n[Secunia Advisory ID:27052](https://secuniaresearch.flexerasoftware.com/advisories/27052/)\n[Secunia Advisory ID:27168](https://secuniaresearch.flexerasoftware.com/advisories/27168/)\n[Secunia Advisory ID:27228](https://secuniaresearch.flexerasoftware.com/advisories/27228/)\n[Secunia Advisory ID:27040](https://secuniaresearch.flexerasoftware.com/advisories/27040/)\n[Secunia Advisory ID:27060](https://secuniaresearch.flexerasoftware.com/advisories/27060/)\n[Secunia Advisory ID:27560](https://secuniaresearch.flexerasoftware.com/advisories/27560/)\n[Secunia Advisory ID:28004](https://secuniaresearch.flexerasoftware.com/advisories/28004/)\n[Related OSVDB ID: 37722](https://vulners.com/osvdb/OSVDB:37722)\nOther Advisory URL: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602\nOther Advisory URL: http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00001.html\nOther Advisory URL: https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html\nOther Advisory URL: http://lists.rpath.com/pipermail/security-announce/2007-October/000258.html\nOther Advisory URL: http://www.us.debian.org/security/2007/dsa-1385\nOther Advisory URL: http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:210\nOther Advisory URL: https://issues.rpath.com/browse/RPL-1756\nOther Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200710-11.xml\nOther Advisory URL: https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00301.html\nOther Advisory URL: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1\nOther Advisory URL: http://www.debian.org/security/2007/dsa-1385\nMail List Post: http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html\nISS X-Force ID: 36919\nFrSIRT Advisory: ADV-2007-3337\nFrSIRT Advisory: ADV-2007-3338\nFrSIRT Advisory: ADV-2007-3467\n[CVE-2007-4989](https://vulners.com/cve/CVE-2007-4989)\n[CVE-2007-4568](https://vulners.com/cve/CVE-2007-4568)\nBugtraq ID: 25898\n", "modified": "2007-10-02T18:48:17", "published": "2007-10-02T18:48:17", "href": "https://vulners.com/osvdb/OSVDB:37721", "id": "OSVDB:37721", "title": "X.Org X Font Server (xfs) build_range Function Overflow", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:42", "bulletinFamily": "unix", "description": "### Background\n\nThe X.Org X11 X Font Server provides a standard mechanism for an X server to communicate with a font renderer. \n\n### Description\n\niDefense reported that the xfs init script does not correctly handle a race condition when setting permissions of a temporary file (CVE-2007-3103). Sean Larsson discovered an integer overflow vulnerability in the build_range() function possibly leading to a heap-based buffer overflow when handling \"QueryXBitmaps\" and \"QueryXExtents\" protocol requests (CVE-2007-4568). Sean Larsson also discovered an error in the swap_char2b() function possibly leading to a heap corruption when handling the same protocol requests (CVE-2007-4990). \n\n### Impact\n\nThe first issue would allow a local attacker to change permissions of arbitrary files to be world-writable by performing a symlink attack. The second and third issues would allow a local attacker to execute arbitrary code with privileges of the user running the X Font Server, usually xfs. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll X Font Server users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=x11-apps/xfs-1.0.5\"", "modified": "2007-10-12T00:00:00", "published": "2007-10-12T00:00:00", "id": "GLSA-200710-11", "href": "https://security.gentoo.org/glsa/200710-11", "type": "gentoo", "title": "X Font Server: Multiple Vulnerabilities", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "suse": [{"lastseen": "2016-09-04T12:20:26", "bulletinFamily": "unix", "description": "The Xorg server was updated to fix 2 problems in the X FontServer found in Xorg versions starting with 6.8 and in the Composite extension.\n#### Solution\nThere is no known workaround, please install the update packages.", "modified": "2007-10-12T16:41:18", "published": "2007-10-12T16:41:18", "id": "SUSE-SA:2007:054", "href": "http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00001.html", "type": "suse", "title": "local privilege escalation in XOrg", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:48:32", "bulletinFamily": "unix", "description": " [4.3.0-125.EL.0.1]\n - Add oracle detection to Imake.\n \n [4.3.0-125.EL]\n - cve-2007-4568.patch: XFS Integer Overflow Vulnerability\n - cve-2007-5958.patch: Xorg / XFree86 file existence disclosure \n vulnerability\n - cve-2007-6427.patch: XInput Extension Memory Corruption Vulnerability\n - cve-2007-6428.patch: TOG-CUP Extension Memory Corruption Vulnerability\n - cve-2007-6429.patch: EVI and MIT-SHM Extension Integer Overflow \n Vulnerability\n - cve-2008-0006.patch: libXfont PCF Parser Memory Corruption Vulnerability ", "modified": "2008-01-18T00:00:00", "published": "2008-01-18T00:00:00", "id": "ELSA-2008-0029", "href": "http://linux.oracle.com/errata/ELSA-2008-0029.html", "title": "Important: XFree86 security update ", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:49:07", "bulletinFamily": "unix", "description": " [6.8.2-1.EL.33.0.1.0.1]\n \n - Add Enterprise Linux detection\n - Add XFree86-4.3.0-oracle-bug-report-address-update.patch\n \n [6.8.2-1.EL.33.0.1]\n - cve-2007-4568.patch: XFS Integer Overflow Vulnerability\n - cve-2007-5760.patch: XFree86-Misc Extension Invalid Array Index \n Vulnerability\n - cve-2007-5958.patch: Xorg / XFree86 file existence disclosure \n vulnerability\n - cve-2007-6427.patch: XInput Extension Memory Corruption Vulnerability\n - cve-2007-6428.patch: TOG-CUP Extension Memory Corruption Vulnerability\n - cve-2007-6429.patch: EVI and MIT-SHM Extension Integer Overflow \n Vulnerability\n - cve-2008-0006.patch: libXfont PCF Parser Memory Corruption Vulnerability ", "modified": "2008-01-17T00:00:00", "published": "2008-01-17T00:00:00", "id": "ELSA-2008-0030", "href": "http://linux.oracle.com/errata/ELSA-2008-0030.html", "title": "Important: xorg-x11 security update ", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-12T14:45:03", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2008:0029\n\n\nXFree86 is an implementation of the X Window System, which provides the\r\ncore functionality for the Linux graphical desktop.\r\n\r\nTwo integer overflow flaws were found in the XFree86 server's EVI and\r\nMIT-SHM modules. A malicious authorized client could exploit these issues\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith root privileges on the XFree86 server. (CVE-2007-6429)\r\n\r\nA heap based buffer overflow flaw was found in the way the XFree86 server\r\nhandled malformed font files. A malicious local user could exploit this\r\nissue to potentially execute arbitrary code with the privileges of the\r\nXFree86 server. (CVE-2008-0006)\r\n\r\nA memory corruption flaw was found in the XFree86 server's XInput\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the XFree86 server. (CVE-2007-6427)\r\n\r\nAn information disclosure flaw was found in the XFree86 server's TOG-CUP\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially view arbitrary memory content\r\nwithin the XFree86 server's address space. (CVE-2007-6428)\r\n\r\nAn integer and heap overflow flaw were found in the X.org font server, xfs.\r\nA user with the ability to connect to the font server could have been able\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\r\n\r\nA flaw was found in the XFree86 server's XC-SECURITY extension, that could\r\nhave allowed a local user to verify the existence of an arbitrary file,\r\neven in directories that are not normally accessible to that user.\r\n(CVE-2007-5958)\r\n\r\nUsers of XFree86 are advised to upgrade to these updated packages, which\r\ncontain backported patches to resolve these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014618.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014619.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014626.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014627.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014633.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014634.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014641.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014646.html\n\n**Affected packages:**\nXFree86\nXFree86-100dpi-fonts\nXFree86-75dpi-fonts\nXFree86-ISO8859-14-100dpi-fonts\nXFree86-ISO8859-14-75dpi-fonts\nXFree86-ISO8859-15-100dpi-fonts\nXFree86-ISO8859-15-75dpi-fonts\nXFree86-ISO8859-2-100dpi-fonts\nXFree86-ISO8859-2-75dpi-fonts\nXFree86-ISO8859-9-100dpi-fonts\nXFree86-ISO8859-9-75dpi-fonts\nXFree86-Mesa-libGL\nXFree86-Mesa-libGLU\nXFree86-Xnest\nXFree86-Xvfb\nXFree86-base-fonts\nXFree86-cyrillic-fonts\nXFree86-devel\nXFree86-doc\nXFree86-font-utils\nXFree86-libs\nXFree86-libs-data\nXFree86-sdk\nXFree86-syriac-fonts\nXFree86-tools\nXFree86-truetype-fonts\nXFree86-twm\nXFree86-xauth\nXFree86-xdm\nXFree86-xfs\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2008-0029.html", "modified": "2008-01-24T15:05:01", "published": "2008-01-18T15:04:04", "href": "http://lists.centos.org/pipermail/centos-announce/2008-January/014618.html", "id": "CESA-2008:0029", "title": "XFree86 security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-12T14:46:13", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2008:0029-01\n\n\nXFree86 is an implementation of the X Window System, which provides the\r\ncore functionality for the Linux graphical desktop.\r\n\r\nTwo integer overflow flaws were found in the XFree86 server's EVI and\r\nMIT-SHM modules. A malicious authorized client could exploit these issues\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith root privileges on the XFree86 server. (CVE-2007-6429)\r\n\r\nA heap based buffer overflow flaw was found in the way the XFree86 server\r\nhandled malformed font files. A malicious local user could exploit this\r\nissue to potentially execute arbitrary code with the privileges of the\r\nXFree86 server. (CVE-2008-0006)\r\n\r\nA memory corruption flaw was found in the XFree86 server's XInput\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the XFree86 server. (CVE-2007-6427)\r\n\r\nAn information disclosure flaw was found in the XFree86 server's TOG-CUP\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially view arbitrary memory content\r\nwithin the XFree86 server's address space. (CVE-2007-6428)\r\n\r\nAn integer and heap overflow flaw were found in the X.org font server, xfs.\r\nA user with the ability to connect to the font server could have been able\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\r\n\r\nA flaw was found in the XFree86 server's XC-SECURITY extension, that could\r\nhave allowed a local user to verify the existence of an arbitrary file,\r\neven in directories that are not normally accessible to that user.\r\n(CVE-2007-5958)\r\n\r\nUsers of XFree86 are advised to upgrade to these updated packages, which\r\ncontain backported patches to resolve these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014630.html\n\n**Affected packages:**\nXFree86\nXFree86-100dpi-fonts\nXFree86-75dpi-fonts\nXFree86-ISO8859-15-100dpi-fonts\nXFree86-ISO8859-15-75dpi-fonts\nXFree86-ISO8859-2-100dpi-fonts\nXFree86-ISO8859-2-75dpi-fonts\nXFree86-ISO8859-9-100dpi-fonts\nXFree86-ISO8859-9-75dpi-fonts\nXFree86-Xnest\nXFree86-Xvfb\nXFree86-cyrillic-fonts\nXFree86-devel\nXFree86-doc\nXFree86-libs\nXFree86-tools\nXFree86-twm\nXFree86-xdm\nXFree86-xf86cfg\nXFree86-xfs\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/rh21as-errata.html", "modified": "2008-01-20T22:56:55", "published": "2008-01-20T22:56:55", "href": "http://lists.centos.org/pipermail/centos-announce/2008-January/014630.html", "id": "CESA-2008:0029-01", "title": "XFree86 security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-12T14:45:44", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2008:0030\n\n\nThe xorg-x11 packages contain X.Org, an open source implementation of the X\r\nWindow System. It provides the basic low-level functionality that\r\nfull-fledged graphical user interfaces are designed upon.\r\n\r\nTwo integer overflow flaws were found in the X.Org server's EVI and MIT-SHM\r\nmodules. A malicious authorized client could exploit these issues to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the X.Org server. (CVE-2007-6429)\r\n\r\nA heap based buffer overflow flaw was found in the way the X.Org server\r\nhandled malformed font files. A malicious local user could exploit these\r\nissues to potentially execute arbitrary code with the privileges of the\r\nX.Org server. (CVE-2008-0006)\r\n\r\nA memory corruption flaw was found in the X.Org server's XInput extension.\r\nA malicious authorized client could exploit this issue to cause a denial of\r\nservice (crash), or potentially execute arbitrary code with root privileges\r\non the X.Org server. (CVE-2007-6427)\r\n\r\nAn input validation flaw was found in the X.Org server's XFree86-Misc\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the X.Org server. (CVE-2007-5760)\r\n\r\nAn information disclosure flaw was found in the X.Org server's TOG-CUP\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially view arbitrary memory content\r\nwithin the X server's address space. (CVE-2007-6428)\r\n\r\nAn integer and heap overflow flaw were found in the X.Org font server, xfs.\r\nA user with the ability to connect to the font server could have been able\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\r\n\r\nA flaw was found in the X.Org server's XC-SECURITY extension, that could\r\nhave allowed a local user to verify the existence of an arbitrary file,\r\neven in directories that are not normally accessible to that user.\r\n(CVE-2007-5958)\r\n\r\nUsers of xorg-x11 should upgrade to these updated packages, which contain\r\nbackported patches to resolve these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014616.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014617.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014643.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014645.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014648.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014649.html\n\n**Affected packages:**\nxorg-x11\nxorg-x11-Mesa-libGL\nxorg-x11-Mesa-libGLU\nxorg-x11-Xdmx\nxorg-x11-Xnest\nxorg-x11-Xvfb\nxorg-x11-deprecated-libs\nxorg-x11-deprecated-libs-devel\nxorg-x11-devel\nxorg-x11-doc\nxorg-x11-font-utils\nxorg-x11-libs\nxorg-x11-sdk\nxorg-x11-tools\nxorg-x11-twm\nxorg-x11-xauth\nxorg-x11-xdm\nxorg-x11-xfs\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2008-0030.html", "modified": "2008-01-25T02:15:10", "published": "2008-01-18T01:10:07", "href": "http://lists.centos.org/pipermail/centos-announce/2008-January/014616.html", "id": "CESA-2008:0030", "title": "xorg security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2018-12-11T17:42:10", "bulletinFamily": "unix", "description": "The xorg-x11 packages contain X.Org, an open source implementation of the X\r\nWindow System. It provides the basic low-level functionality that\r\nfull-fledged graphical user interfaces are designed upon.\r\n\r\nTwo integer overflow flaws were found in the X.Org server's EVI and MIT-SHM\r\nmodules. A malicious authorized client could exploit these issues to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the X.Org server. (CVE-2007-6429)\r\n\r\nA heap based buffer overflow flaw was found in the way the X.Org server\r\nhandled malformed font files. A malicious local user could exploit these\r\nissues to potentially execute arbitrary code with the privileges of the\r\nX.Org server. (CVE-2008-0006)\r\n\r\nA memory corruption flaw was found in the X.Org server's XInput extension.\r\nA malicious authorized client could exploit this issue to cause a denial of\r\nservice (crash), or potentially execute arbitrary code with root privileges\r\non the X.Org server. (CVE-2007-6427)\r\n\r\nAn input validation flaw was found in the X.Org server's XFree86-Misc\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the X.Org server. (CVE-2007-5760)\r\n\r\nAn information disclosure flaw was found in the X.Org server's TOG-CUP\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially view arbitrary memory content\r\nwithin the X server's address space. (CVE-2007-6428)\r\n\r\nAn integer and heap overflow flaw were found in the X.Org font server, xfs.\r\nA user with the ability to connect to the font server could have been able\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\r\n\r\nA flaw was found in the X.Org server's XC-SECURITY extension, that could\r\nhave allowed a local user to verify the existence of an arbitrary file,\r\neven in directories that are not normally accessible to that user.\r\n(CVE-2007-5958)\r\n\r\nUsers of xorg-x11 should upgrade to these updated packages, which contain\r\nbackported patches to resolve these issues.", "modified": "2017-09-08T12:14:17", "published": "2008-01-17T05:00:00", "id": "RHSA-2008:0030", "href": "https://access.redhat.com/errata/RHSA-2008:0030", "type": "redhat", "title": "(RHSA-2008:0030) Important: xorg-x11 security update", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:41:24", "bulletinFamily": "unix", "description": "XFree86 is an implementation of the X Window System, which provides the\r\ncore functionality for the Linux graphical desktop.\r\n\r\nTwo integer overflow flaws were found in the XFree86 server's EVI and\r\nMIT-SHM modules. A malicious authorized client could exploit these issues\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith root privileges on the XFree86 server. (CVE-2007-6429)\r\n\r\nA heap based buffer overflow flaw was found in the way the XFree86 server\r\nhandled malformed font files. A malicious local user could exploit this\r\nissue to potentially execute arbitrary code with the privileges of the\r\nXFree86 server. (CVE-2008-0006)\r\n\r\nA memory corruption flaw was found in the XFree86 server's XInput\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially execute arbitrary code with\r\nroot privileges on the XFree86 server. (CVE-2007-6427)\r\n\r\nAn information disclosure flaw was found in the XFree86 server's TOG-CUP\r\nextension. A malicious authorized client could exploit this issue to cause\r\na denial of service (crash), or potentially view arbitrary memory content\r\nwithin the XFree86 server's address space. (CVE-2007-6428)\r\n\r\nAn integer and heap overflow flaw were found in the X.org font server, xfs.\r\nA user with the ability to connect to the font server could have been able\r\nto cause a denial of service (crash), or potentially execute arbitrary code\r\nwith the permissions of the font server. (CVE-2007-4568, CVE-2007-4990)\r\n\r\nA flaw was found in the XFree86 server's XC-SECURITY extension, that could\r\nhave allowed a local user to verify the existence of an arbitrary file,\r\neven in directories that are not normally accessible to that user.\r\n(CVE-2007-5958)\r\n\r\nUsers of XFree86 are advised to upgrade to these updated packages, which\r\ncontain backported patches to resolve these issues.", "modified": "2018-05-11T23:27:31", "published": "2008-01-18T05:00:00", "id": "RHSA-2008:0029", "href": "https://access.redhat.com/errata/RHSA-2008:0029", "type": "redhat", "title": "(RHSA-2008:0029) Important: XFree86 security update", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
