59 matches found
drm, libICE, libX11, libXaw, libXcursor, libXdmcp, libXfixes, libXfont, libXfont2, libXi, libXpm, libXrandr, libXrender, libXt, libXtst, libXv, libXvMC, libXxf86vm, libdrm, libepoxy, libevdev, libfontenc, libinput, libvdpau, libwacom, libxcb, libxkbcommon, libxkbfile, mesa, vulkan, xcb, xkeyboard, xorg security update
CentOS Errata and Security Advisory CESA-2017:1865 An update is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
X.org X11 libraries security, bug fix and enhancement update
libICE 1.0.9-9 - Add upstream patch to not pull libbsd - Add custom patch for Fedora 24 & 25 1.0.9-8 - Fix changelog 1.0.9-7 - Use libbsd for randoms CVE-2017-2626, rhbz1427715 1.0.9-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora26MassRebuild 1.0.9-5 - Force disable documentation generatio...
RedHat Update for X.org X11 libraries RHSA-2017:1865-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libXdmcp: weak entropy usage for session keys
It was discovered that libXdmcp used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...
Fedora 26 : libXdmcp (2017-09f65e5e00)
Security fix for CVE-2017-2625 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...
SUSE SLES11 Security Update : xorg-x11-libXdmcp (SUSE-SU-2017:1868-1)
This update for xorg-x11-libXdmcp fixes the following issues : - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046 Note that Tenable Network Security has extracted the preceding description block directl...
SUSE SLED12 / SLES12 Security Update : libXdmcp (SUSE-SU-2017:1862-1)
This update for libXdmcp fixes the following issues : - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046 Note that Tenable Network Security has extracted the preceding description block directly from th...
SUSE-SU-2017:1868-1 Security update for xorg-x11-libXdmcp
This update for xorg-x11-libXdmcp fixes the following issues: - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046...
SUSE-SU-2017:1862-1 Security update for libXdmcp
This update for libXdmcp fixes the following issues: - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046...
openSUSE Security Update : libXdmcp (openSUSE-2017-789)
This update for libXdmcp fixes the following issues : - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable boo1025046 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
GLSA-201704-03 : X.Org: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201704-03 X.Org: Multiple vulnerabilities Multiple vulnerabilities have been discovered in X.Org server and libraries. Please review the CVE identifiers referenced below for details. Impact : A local or remote users can utilize th...
libXdmcp -- insufficient entropy generating session keys
The freedesktop and x.org project reports: It was discovered that libXdmcp before 1.1.3 used weak entropy to generate session keys on platforms without arc4randombuf but with getentropy. On a multi-user system using xdmcp, a local attacker could potentially use information available from the...
[SECURITY] Fedora 26 Update: libXdmcp-1.1.2-5.fc26
X Display Manager Control Protocol library...
Fedora Update for libXdmcp FEDORA-2017-bcb1999e65
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 24 : libXdmcp (2017-bcb1999e65)
Security fix for CVE-2017-2625 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...
[SECURITY] Fedora 24 Update: libXdmcp-1.1.2-5.fc24
X Display Manager Control Protocol library...
Fedora Update for libXdmcp FEDORA-2017-9a9328c159
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : libXdmcp (2017-9a9328c159)
Security fix for CVE-2017-2625 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...
CVE-2017-2625
It was discovered that libXdmcp used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...