Login
Newsletter
Werbung

Sicherheit: Mangelnde Fehlerbehandlung in xorg-x11 und XFree86
Aktuelle Meldungen Distributionen
Name: Mangelnde Fehlerbehandlung in xorg-x11 und XFree86
ID: TLSA-2006-12
Distribution: TurboLinux
Plattformen: Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal
Datum: Mi, 2. August 2006, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0745
Applikationen: XFree86, X11

Originalnachricht

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2006-12
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Original released date: 19 Jul 2006
Last revised: 19 Jul 2006

Package: xorg-x11, XFree86

Summary: setuid return value check problems

More information:
XFree86 is an implementation of the X Window System, providing a core
graphical user interface and video drivers.

The xorg-x11 and XFree86 have the setuid return value check problems.

Impact:
This vulnerability may allow local users to execute arbitrary code or
overwrite arbitrary files via logfile.

Affected Products:
- Turbolinux 10 Server x64 Edition
- Turbolinux 10 Server
- Turbolinux Home
- Turbolinux 10 F...
- Turbolinux 10 Desktop
- Turbolinux Multimedia
- Turbolinux Personal


<Turbolinux 10 Server x64 Edition>

Source Packages
Size: MD5

XFree86-4.3.0-89.src.rpm
57105519 34702a82777aa610c1e7be6beaa2fc0c

Binary Packages
Size: MD5

XFree86-4.3.0-89.x86_64.rpm
18847861 e2d36f287de2b8d4fc1380db932421ae
XFree86-75dpi-fonts-4.3.0-89.x86_64.rpm
10768536 7887e789ab14432a4d7f3adba20bdb97
XFree86-100dpi-fonts-4.3.0-89.x86_64.rpm
12438172 72574cbd990f84db60a30a527c43e7f5
XFree86-Xvfb-4.3.0-89.x86_64.rpm
2050682 3ff863b5a76696c146750f6059252953
XFree86-contrib-4.3.0-89.x86_64.rpm
528126 ac2524a91c45ef6ab389d6fa026c7f99
XFree86-cyrillic-fonts-4.3.0-89.x86_64.rpm
413401 a77ffaa2bacfc5ef4b4e747a67b997cc
XFree86-debug-4.3.0-89.x86_64.rpm
1716600 64002529047337a84fc8989529fdea08
XFree86-devel-4.3.0-89.x86_64.rpm
5295828 3faae8217f3849a04f4a31729cf8c599
XFree86-fonts-4.3.0-89.x86_64.rpm
8770451 c17d7518d4f85ca6fb74017ea115c351
XFree86-libs-4.3.0-89.x86_64.rpm
2888459 e7178cc1dc37223bd17ed0f82a2d07f4
XFree86-twm-4.3.0-89.x86_64.rpm
132886 4ddc04b98f2846f932a07c2502e837f9
XFree86-xcursor-4.3.0-89.x86_64.rpm
54168 814709b921469e2d92b664c30282bbbd
XFree86-xcursor-devel-4.3.0-89.x86_64.rpm
51741 d7aabde9fc0d2629c4430f538d2e62b4
XFree86-xf86config-4.3.0-89.x86_64.rpm
360887 6a056ad2a64f36d805d40f3bd4b8e975
XFree86-xfs-4.3.0-89.x86_64.rpm
94737 1a4f5f1275545fd39915446bf5647f77
XFree86-xft-4.3.0-89.x86_64.rpm
86313 be7cc627107af692160bf0035f39ac8c
XFree86-xft-devel-4.3.0-89.x86_64.rpm
71442 bf34be839befea3ef7fa2310be0c8467

<Turbolinux 10 Server>

Source Packages
Size: MD5

XFree86-4.3.0-89.src.rpm
57105519 34702a82777aa610c1e7be6beaa2fc0c

Binary Packages
Size: MD5

XFree86-4.3.0-89.i586.rpm
18105356 ce1888ee649fdb114fa00432f17c6b1c
XFree86-75dpi-fonts-4.3.0-89.i586.rpm
10769594 a3ca7b205e6c3167466d29d5dec94598
XFree86-100dpi-fonts-4.3.0-89.i586.rpm
12438546 70e2974c34a6c31e4337615659eaef92
XFree86-Xvfb-4.3.0-89.i586.rpm
1769507 9415f49daaaebac08d31c07bc14d5418
XFree86-contrib-4.3.0-89.i586.rpm
468272 6ff559a9300afaa8220314a9c6e443d1
XFree86-cyrillic-fonts-4.3.0-89.i586.rpm
413421 cb6937c8f3dd2f9b38da7ebbbb837dac
XFree86-debug-4.3.0-89.i586.rpm
1421301 fa0092c800c9a666abd8548abb97349c
XFree86-devel-4.3.0-89.i586.rpm
5021598 376e63ed5c4eb54d15f2eae37e697496
XFree86-fonts-4.3.0-89.i586.rpm
8770362 7647fc112bb9f12fc1dc4bd0af9bd4d3
XFree86-libs-4.3.0-89.i586.rpm
2652431 3101c22944c83082011212857a0f11e9
XFree86-twm-4.3.0-89.i586.rpm
119109 dccf5a2027032747842b07719c5c68b2
XFree86-xcursor-4.3.0-89.i586.rpm
51979 d63657e10af10f56defd60c509f02a09
XFree86-xcursor-devel-4.3.0-89.i586.rpm
49289 879b6490e8f08cb8738037f1c05d5b55
XFree86-xf86config-4.3.0-89.i586.rpm
327307 bf7764fa17fbc489d46a180c8d5f55e0
XFree86-xfs-4.3.0-89.i586.rpm
84906 47a941c6014fd97a5f8a0f4aab3ee18d
XFree86-xft-4.3.0-89.i586.rpm
81096 0790b1285b49ec51ad4af8e61d68ed62
XFree86-xft-devel-4.3.0-89.i586.rpm
67039 7f582de1d08aae8523b9178555e0a7cd

<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux
Multimedia, Turbolinux Personal>

Source Packages
Size: MD5

XFree86-4.3.0-89.src.rpm
57105519 34702a82777aa610c1e7be6beaa2fc0c

Binary Packages
Size: MD5

XFree86-4.3.0-89.i586.rpm
18087775 acef087e155b9c55e6d067dcc8efa649
XFree86-75dpi-fonts-4.3.0-89.i586.rpm
10769008 4858586ca191e0f1a6921d97db6f9af8
XFree86-100dpi-fonts-4.3.0-89.i586.rpm
12439298 4a09f8d869781c3c5f4b0ea2f45ae79a
XFree86-Xvfb-4.3.0-89.i586.rpm
1772906 bc0136e15d989ab2357418b4e779f7e6
XFree86-contrib-4.3.0-89.i586.rpm
470342 61229fe63c5ce237cf41d5cced7f7ba3
XFree86-cyrillic-fonts-4.3.0-89.i586.rpm
413518 7632c680e7aa15db805fe4fa684bbd75
XFree86-devel-4.3.0-89.i586.rpm
5048091 3b2352c505d20e34d0806eea9af681ed
XFree86-fonts-4.3.0-89.i586.rpm
8770613 6d43a68b2d9af528e1b56010ab3d8954
XFree86-libs-4.3.0-89.i586.rpm
2655197 9e713f4465a64ca794f3b4a0c74a6ea8
XFree86-twm-4.3.0-89.i586.rpm
119397 4115fdda4ee739e44ad4b4e0752f50bf
XFree86-xcursor-4.3.0-89.i586.rpm
52160 bcf690d7c06294dfe38710b828368bef
XFree86-xcursor-devel-4.3.0-89.i586.rpm
45384 3497b6755e1c199e4d2e680d7858aad6
XFree86-xf86config-4.3.0-89.i586.rpm
328534 3d710fa737af4c112a8e184f5b52cd35
XFree86-xfs-4.3.0-89.i586.rpm
85246 5ccd741e8450532041042ad3e1ec6c7c
XFree86-xft-4.3.0-89.i586.rpm
81162 e53deb8ec183e6b8a58e8ad2379a68c4
XFree86-xft-devel-4.3.0-89.i586.rpm
67175 2a90ef9c178fc406c0c7fb274faec6ae


References:

CVE
[CAN-2006-0745]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2006-0745

--------------------------------------------------------------------------
Revision History
19 Jul 2006 Initial release
--------------------------------------------------------------------------

Copyright(C) 2006 Turbolinux, Inc. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFEvey5K0LzjOqIJMwRApt2AKCGTwx/W9vhD3hOYqvK1GtKDjJvJQCgk3U4
rGF+yUEi8Csb+S5HOebQx5U=
=EW5y
-----END PGP SIGNATURE-----
Pro-Linux
Frohe Ostern
Neue Nachrichten
Werbung