Secunia - Stay Secure
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


SUSE update for XFree86-server/xorg-x11-server Advisory Available in Danish 

Secunia Advisory: SA16925  
Release Date: 2005-09-26

Critical:
Less critical
Impact: Privilege escalation
Where: Local system
Solution Status: Vendor Patch

OS:SuSE Linux 9.0
SuSE Linux 9.1
SUSE Linux 9.2
SUSE Linux 9.3
SuSE Linux Desktop 1.x
SuSE Linux Enterprise Server 8
SUSE Linux Enterprise Server 9


CVE reference:CVE-2005-2495 (Secunia mirror)

Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
SUSE has issued an update for XFree86-server/xorg-x11-server. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges.

For more information:
SA16777
SA16790

Solution:
Apply updated packages.

-- x86 Platform --

SUSE Linux 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...6/xorg-x11-server-6.8.2-30.4.i586.rpm
dc41dbe04424ef869811323b76c567ef
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/upda...-x11-server-6.8.2-30.4.i586.patch.rpm
cb854e1f0042916a731e2fce9028fcc5
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/xorg-x11-6.8.2-30.4.src.rpm
ca3baf4c2d1df7bfcb0af630bbef1a6d

SUSE Linux 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...6/xorg-x11-server-6.8.1-15.9.i586.rpm
a08df5563bc23ce0a304a488657f1d53
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/upda...-x11-server-6.8.1-15.9.i586.patch.rpm
9739cdfa5157b5aa9ba5f0a21129edfd
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/xorg-x11-6.8.1-15.9.src.rpm
de447aaeae832d524d1b292e83a9e6aa

SUSE Linux 9.1:
ftp://ftp.suse.com/pub/suse/i386/upda...86-server-4.3.99.902-43.50.3.i586.rpm
c101e4dfb938ab0b6afb4e480971cb98
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/upda...ver-4.3.99.902-43.50.3.i586.patch.rpm
9117e86e254c3a6ebf73395307382179
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/upda...rc/XFree86-4.3.99.902-43.50.3.src.rpm
ec3f9bfed9da411ddbc55f8f3bc48729

SUSE Linux 9.0:
ftp://ftp.suse.com/pub/suse/i386/upda...86/XFree86-server-4.3.0.1-60.i586.rpm
d85636745eefd2fe67d4ef0d7491bd44
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/upda...ee86-server-4.3.0.1-60.i586.patch.rpm
a205fbaef7d98c3ce599f71f8dd51864
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/XFree86-4.3.0.1-60.src.rpm
3c5c345435ff6310ce8479497a6a80af

-- x86-64 Platform --

SUSE Linux 9.3:
ftp://ftp.suse.com/pub/suse/x86_64/up...xorg-x11-server-6.8.2-30.4.x86_64.rpm
15895f47f57e2507e8d5ae4e854c3e3a
patch rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...11-server-6.8.2-30.4.x86_64.patch.rpm
6e58d518d719d901fe4b41ba1a2bd8fa
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...3/rpm/src/xorg-x11-6.8.2-30.4.src.rpm
ca3baf4c2d1df7bfcb0af630bbef1a6d

SUSE Linux 9.2:
ftp://ftp.suse.com/pub/suse/x86_64/up...xorg-x11-server-6.8.1-15.9.x86_64.rpm
f6c86f558fd5ae340f98eb85cbcb5d8d
patch rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...11-server-6.8.1-15.9.x86_64.patch.rpm
2393163cd16ec2db996f927121f5b6a7
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...2/rpm/src/xorg-x11-6.8.1-15.9.src.rpm
de447aaeae832d524d1b292e83a9e6aa

SUSE Linux 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/up...-server-4.3.99.902-43.50.3.x86_64.rpm
9b8f7d8ef0992b6664071f8416243c25
patch rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...r-4.3.99.902-43.50.3.x86_64.patch.rpm
918bad600f482fd524da5efc8f7aeb7a
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...rc/XFree86-4.3.99.902-43.50.3.src.rpm
0cd5570ed44f6dcf2dcfaf28dd1d29f5

SUSE Linux 9.0:
ftp://ftp.suse.com/pub/suse/x86_64/up.../XFree86-server-4.3.0.1-60.x86_64.rpm
fbb16e807e443d1176e346f500abe14f
patch rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/up...86-server-4.3.0.1-60.x86_64.patch.rpm
69c56321cba9860b092183f78bdf9d85
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/XFree86-4.3.0.1-60.src.rpm
0e6a2a4f3a79421c9ab7042f3500e109

Original Advisory:
http://lists.suse.com/archive/suse-security-announce/2005-Sep/0009.html

Other References:
SA16777:
http://secunia.com/advisories/16777/

SA16790:
http://secunia.com/advisories/16790/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

403 Related Secunia Security Advisories, displaying 10

1. SUSE update for python
2. SUSE update for postfix
3. SUSE update for net-snmp
4. SUSE Update for Multiple Packages
5. SUSE update for bind
6. SUSE Update for Multiple Packages
7. SUSE update for kernel
8. SUSE Update for Multiple Packages
9. SUSE update for xorg-x11 and XFree86
10. SUSE Update for Multiple Packages

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
rPath update for kernel and xen
2.
Opera Multiple Vulnerabilities
3.
Folder Lock Weak Password Encryption Security Issue
4.
vBulletin Private Message Subject Script Insertion
5.
neon "parse_domain() " Denial of Service Vulnerability
6.
SunShop Shopping Cart class.ajax.php SQL Injection Vulnerabilities
7.
Subdreamer Light Global Variables SQL Injection Vulnerability
8.
PHP Live Helper Multiple Vulnerabilities
9.
Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
10.
Anzio Web Print Object (WePO) ActiveX Component "mainurl" Buffer Overflow





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia