(RHSA-2005:396) xorg-x11 security update

2005-09-1300:00:00

access.redhat.com

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

88.9%

JSON

X.org is an open source implementation of the X Window System. It
provides the basic low-level functionality that full-fledged graphical
user interfaces (GUIs) such as GNOME and KDE are designed upon.

Several integer overflow bugs were found in the way X.org parses pixmap
images. It is possible for a user to gain elevated privileges by loading a
specially crafted pixmap image. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2005-2495 to this issue.

Users of X.org should upgrade to these updated packages, which contain a
backported patch and are not vulnerable to this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyx86_64xorg-x11-xdm< 6.8.2-1.EL.13.16xorg-x11-xdm-6.8.2-1.EL.13.16.x86_64.rpm
RedHatanyx86_64xorg-x11-xdmx< 6.8.2-1.EL.13.16xorg-x11-Xdmx-6.8.2-1.EL.13.16.x86_64.rpm
RedHatanyx86_64xorg-x11-twm< 6.8.2-1.EL.13.16xorg-x11-twm-6.8.2-1.EL.13.16.x86_64.rpm
RedHatanys390xxorg-x11-deprecated-libs-devel< 6.8.2-1.EL.13.16xorg-x11-deprecated-libs-devel-6.8.2-1.EL.13.16.s390x.rpm
RedHatanyppcxorg-x11-devel< 6.8.2-1.EL.13.16xorg-x11-devel-6.8.2-1.EL.13.16.ppc.rpm
RedHatanys390xorg-x11-libs< 6.8.2-1.EL.13.16xorg-x11-libs-6.8.2-1.EL.13.16.s390.rpm
RedHatanyi386xorg-x11-font-utils< 6.8.2-1.EL.13.16xorg-x11-font-utils-6.8.2-1.EL.13.16.i386.rpm
RedHatanyppcxorg-x11-deprecated-libs-devel< 6.8.2-1.EL.13.16xorg-x11-deprecated-libs-devel-6.8.2-1.EL.13.16.ppc.rpm
RedHatanys390xxorg-x11-xdmx< 6.8.2-1.EL.13.16xorg-x11-Xdmx-6.8.2-1.EL.13.16.s390x.rpm
RedHatanys390xorg-x11-xfs< 6.8.2-1.EL.13.16xorg-x11-xfs-6.8.2-1.EL.13.16.s390.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	x86_64	xorg-x11-xdm	< 6.8.2-1.EL.13.16	xorg-x11-xdm-6.8.2-1.EL.13.16.x86_64.rpm
RedHat	any	x86_64	xorg-x11-xdmx	< 6.8.2-1.EL.13.16	xorg-x11-Xdmx-6.8.2-1.EL.13.16.x86_64.rpm
RedHat	any	x86_64	xorg-x11-twm	< 6.8.2-1.EL.13.16	xorg-x11-twm-6.8.2-1.EL.13.16.x86_64.rpm
RedHat	any	s390x	xorg-x11-deprecated-libs-devel	< 6.8.2-1.EL.13.16	xorg-x11-deprecated-libs-devel-6.8.2-1.EL.13.16.s390x.rpm
RedHat	any	ppc	xorg-x11-devel	< 6.8.2-1.EL.13.16	xorg-x11-devel-6.8.2-1.EL.13.16.ppc.rpm
RedHat	any	s390	xorg-x11-libs	< 6.8.2-1.EL.13.16	xorg-x11-libs-6.8.2-1.EL.13.16.s390.rpm
RedHat	any	i386	xorg-x11-font-utils	< 6.8.2-1.EL.13.16	xorg-x11-font-utils-6.8.2-1.EL.13.16.i386.rpm
RedHat	any	ppc	xorg-x11-deprecated-libs-devel	< 6.8.2-1.EL.13.16	xorg-x11-deprecated-libs-devel-6.8.2-1.EL.13.16.ppc.rpm
RedHat	any	s390x	xorg-x11-xdmx	< 6.8.2-1.EL.13.16	xorg-x11-Xdmx-6.8.2-1.EL.13.16.s390x.rpm
RedHat	any	s390	xorg-x11-xfs	< 6.8.2-1.EL.13.16	xorg-x11-xfs-6.8.2-1.EL.13.16.s390.rpm