X.org is an open source implementation of the X Window System. It provides
the basic low-level functionality that full-fledged graphical user
interfaces are designed upon.
iDefense reported two integer overflow flaws in the way the X.org server
processed CID font files. A malicious authorized client could exploit this
issue to cause a denial of service (crash) or potentially execute arbitrary
code with root privileges on the X.org server. (CVE-2006-3739, CVE-2006-3740)
Users of X.org should upgrade to these updated packages, which contain a
backported patch and is not vulnerable to this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | i386 | xorg-x11-mesa-libglu | < 6.8.2-1.EL.13.37.2 | xorg-x11-Mesa-libGLU-6.8.2-1.EL.13.37.2.i386.rpm |
RedHat | any | ppc | xorg-x11-deprecated-libs-devel | < 6.8.2-1.EL.13.37.2 | xorg-x11-deprecated-libs-devel-6.8.2-1.EL.13.37.2.ppc.rpm |
RedHat | any | s390 | xorg-x11-libs | < 6.8.2-1.EL.13.37.2 | xorg-x11-libs-6.8.2-1.EL.13.37.2.s390.rpm |
RedHat | any | x86_64 | xorg-x11-libs | < 6.8.2-1.EL.13.37.2 | xorg-x11-libs-6.8.2-1.EL.13.37.2.x86_64.rpm |
RedHat | any | ppc | xorg-x11-devel | < 6.8.2-1.EL.13.37.2 | xorg-x11-devel-6.8.2-1.EL.13.37.2.ppc.rpm |
RedHat | any | i386 | xorg-x11-xauth | < 6.8.2-1.EL.13.37.2 | xorg-x11-xauth-6.8.2-1.EL.13.37.2.i386.rpm |
RedHat | any | ia64 | xorg-x11-libs | < 6.8.2-1.EL.13.37.2 | xorg-x11-libs-6.8.2-1.EL.13.37.2.ia64.rpm |
RedHat | any | s390x | xorg-x11-libs | < 6.8.2-1.EL.13.37.2 | xorg-x11-libs-6.8.2-1.EL.13.37.2.s390x.rpm |
RedHat | any | ppc64 | xorg-x11-mesa-libgl | < 6.8.2-1.EL.13.37.2 | xorg-x11-Mesa-libGL-6.8.2-1.EL.13.37.2.ppc64.rpm |
RedHat | any | ia64 | xorg-x11 | < 6.8.2-1.EL.13.37.2 | xorg-x11-6.8.2-1.EL.13.37.2.ia64.rpm |