Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] rPSA-2006-0157-1 xorg-x11 xorg-x11-fonts xorg-x11-tool

from [Justin M. Forbes] Network Security [Permanent Link]
Subject: [Full-disclosure] rPSA-2006-0157-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs
Date: Fri, 25 Aug 2006 00:14:26 -0400 
rPath Security Advisory: 2006-0157-1
Published: 2006-08-25
Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
    Local Deterministic Vulnerability
Updated Versions:
    xorg-x11=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1
    xorg-x11-fonts=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1
    xorg-x11-tools=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1
    xorg-x11-xfs=/conary.rpath.com@rpl:devel//1/6.8.2-30.1-1

References:
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3467
    https://issues.rpath.com/browse/RPL-596
    https://bugs.freedesktop.org/show_bug.cgi?id=7535

Description:
    Previous versions of the xorg-x11 package have weaknesses parsing
    fonts, related to the freetype vulnerabilities described in the
    rPSA-2006-0100-2 advisory.  These weaknesses are known to allow at
    least a denial of service attack, and may allow executing arbitrary
    code as the root user.  After updating, it will be necessary to
    restart the X server in order for the update to take effect.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-disclosure] rPSA-2006-0157-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs, Justin M. Forbes <=
Previous by Date:  Re: contentpublisher Mambo Component Remote File Include Vulnerabilities, Carsten Eilers
Next by Date:  [Full-disclosure] rPSA-2006-0158-1 tshark wireshark, Justin M. Forbes
Previous by Thread:  pSlash v0.7 (lvc_include_dir) Remote Include Vulnerability, x0r0n
Next by Thread:  [Full-disclosure] rPSA-2006-0158-1 tshark wireshark, Justin M. Forbes
Indexes:  [Date] [Thread] [Top] [All Lists]