|
XFree86 Multiple Vulnerabilities
|
|
|
|
|
Secunia Advisory:
|
SA12553
|
|
|
Release Date:
|
2004-09-17
|
|
Last Update:
|
2005-03-31
|
|
|
Critical:
|

Highly critical
|
|
Impact:
|
Unknown Security Bypass DoS System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | XFree86 4.1.x XFree86 4.2.x XFree86 4.3.x XFree86 4.4.x
|
| | CVE reference: | CVE-2004-0419 (Secunia mirror) CVE-2004-0687 (Secunia mirror) CVE-2004-0688 (Secunia mirror) CVE-2004-0914 (Secunia mirror) CVE-2005-0605 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS! |
|
|
Description: Some vulnerabilities have been reported in XFree86, which may allow malicious users to gain unintended access to a system or can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user's system.
1) An error in xdm causes it to listen for queries on a random TCP socket when DisplayManager.requestPort is set to "0" in the configuration file.
2) An unspecified integer overflow error exists in libICE/libSM.
3) Various types of errors including boundary errors, integer overflows, out-of-bounds memory access, and input validation errors exist in libXpm when processing XPM files. These can be exploited to cause crash applications linked against the vulnerable library or potentially execute arbitrary code.
For more information:
SA12549
SA13224
SA14460
4) Some unspecified errors related to wrap-around of memory allocation requests exist in the font handling and other areas.
Solution: Update to version 4.5.0.
http://www.xfree86.org/releases/rel450.html
Provided and/or discovered by: 1) Steve Rumble
Changelog: 2004-10-09: Updated "Solution" section.
2005-03-31: Added additional information and updated "Solution" section.
Original Advisory: http://www.xfree86.org/4.5.0/RELNOTES3.html
Other References: SA12549:
http://secunia.com/advisories/12549/
SA13224:
http://secunia.com/advisories/13224/
SA14460:
http://secunia.com/advisories/14460/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
9 Related Secunia Security Advisories
|
|
|
1. XFree86 X Font Server Multiple Vulnerabilities
|
|
2. XFree86 Multiple Vulnerabilities
|
|
3. XFree86 "DBE" and "Render" Extensions Vulnerabilities
|
|
4. XFree86 CID Encoded Fonts Integer Overflows
|
|
5. XFree86 PCF Integer Overflow Vulnerabilities
|
|
6. XFree86 Pixmap Creation Integer Overflow Vulnerability
|
|
7. XFree86 "font.alias" File Parsing Privilege Escalation Vulnerabilities
|
|
8. XFree Weak Session Cookies
|
|
9. XFree86 Multiple Integer Overflow Vulnerabilities
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|