CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
Percentile
90.5%
CentOS Errata and Security Advisory CESA-2005:396
X.org is an open source implementation of the X Window System. It
provides the basic low-level functionality that full-fledged graphical
user interfaces (GUIs) such as GNOME and KDE are designed upon.
Several integer overflow bugs were found in the way X.org parses pixmap
images. It is possible for a user to gain elevated privileges by loading a
specially crafted pixmap image. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2005-2495 to this issue.
Users of X.org should upgrade to these updated packages, which contain a
backported patch and are not vulnerable to this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-September/074320.html
https://lists.centos.org/pipermail/centos-announce/2005-September/074322.html
https://lists.centos.org/pipermail/centos-announce/2005-September/074323.html
https://lists.centos.org/pipermail/centos-announce/2005-September/074324.html
Affected packages:
xorg-x11
xorg-x11-Mesa-libGL
xorg-x11-Mesa-libGLU
xorg-x11-Xdmx
xorg-x11-Xnest
xorg-x11-Xvfb
xorg-x11-deprecated-libs
xorg-x11-deprecated-libs-devel
xorg-x11-devel
xorg-x11-doc
xorg-x11-font-utils
xorg-x11-libs
xorg-x11-sdk
xorg-x11-tools
xorg-x11-twm
xorg-x11-xauth
xorg-x11-xdm
xorg-x11-xfs
Upstream details at:
https://access.redhat.com/errata/RHSA-2005:396
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | ia64 | xorg-x11 | < 6.8.2-1.EL.13.16 | xorg-x11-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-mesa-libgl | < 6.8.2-1.EL.13.16 | xorg-x11-Mesa-libGL-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-mesa-libglu | < 6.8.2-1.EL.13.16 | xorg-x11-Mesa-libGLU-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-xdmx | < 6.8.2-1.EL.13.16 | xorg-x11-Xdmx-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-xnest | < 6.8.2-1.EL.13.16 | xorg-x11-Xnest-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-xvfb | < 6.8.2-1.EL.13.16 | xorg-x11-Xvfb-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-deprecated-libs | < 6.8.2-1.EL.13.16 | xorg-x11-deprecated-libs-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-deprecated-libs-devel | < 6.8.2-1.EL.13.16 | xorg-x11-deprecated-libs-devel-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-devel | < 6.8.2-1.EL.13.16 | xorg-x11-devel-6.8.2-1.EL.13.16.ia64.rpm |
CentOS | 4 | ia64 | xorg-x11-doc | < 6.8.2-1.EL.13.16 | xorg-x11-doc-6.8.2-1.EL.13.16.ia64.rpm |