French Security Incident Response Team

FrSIRT   

      

   français French  anglais English

 
Vulnerability Notification Service
 FrSIRT Private Exploit & PoC Codes Service
 FrSIRT Partner Program
 14-Day Free Trial
Contact FrSIRT Sales Dept.
 

Security Advisories
Linux Security Advisories
Virus and Threats Advisories
Latest Security News
Latest Zero Day Threats
Security Vulnerabilities and Advisories Search Engine
 

Report a security incident
Report a new vulnerability
Security Mailinglist
 

Our Company
FrSIRT in the News
Advertise on FrSIRT.COM
Security Researchers and Exploit Writers Jobs
Contact Us

Fedora Security Update Fixes X.Org X11 Multiple Privilege Escalation Vulnerabilities

Title : Fedora Security Update Fixes X.Org X11 Multiple Privilege Escalation Vulnerabilities
Advisory ID : FrSIRT/ADV-2007-0126
CVE ID : CVE-2006-6101 - CVE-2006-6102 - CVE-2006-6103
Rated as : Moderate Risk 
Remotely Exploitable : No
Locally Exploitable : Yes
Release Date : 2007-01-11

Advisory Details
 
  Description
  Affected Products
  Solution
  References
Technical Description    Receive FrSIRT alerts in a Text format  Receive FrSIRT alerts in a PDF format  Receive FrSIRT alerts in an XML format  Receive FrSIRT notifications by SMS 

Fedora has released security updates to address multiple vulnerabilities identified in X.Org X11 [...]

Solution

Upgrade the affected packages :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

882cd3d6824b13aa6fcbffac2c5c3552a89e08cf SRPMS/xorg-x11-server-1.0.1-9.fc5.6.src.rpm
882cd3d6824b13aa6fcbffac2c5c3552a89e08cf noarch/xorg-x11-server-1.0.1-9.fc5.6.src.rpm
e4d4ad0b59e3b6ff4e796ef7cb1564c3ae787e35 ppc/xorg-x11-server-Xorg-1.0.1-9.fc5.6.ppc.rpm
e113f28f6737fe7fff87df9a871af74f40f7a4c3 ppc/xorg-x11-server-Xdmx-1.0.1-9.fc5.6.ppc.rpm
b9080c654f08f53d558379bd8715f01a425276a5 ppc/xorg-x11-server-Xvfb-1.0.1-9.fc5.6.ppc.rpm
add13c1880d24e50d6a1c61d3be4378988f3a6b1 ppc/xorg-x11-server-Xnest-1.0.1-9.fc5.6.ppc.rpm
1dabe8c0803a14912aed78530122c7681e9918c8 ppc/debug/xorg-x11-server-debuginfo-1.0.1-9.fc5.6.ppc.rpm
dc9545b9f1ce4ba635b9eb852fece9add3a89d10 ppc/xorg-x11-server-sdk-1.0.1-9.fc5.6.ppc.rpm
f23310ae5bd674d8c92ddbc7a1fdfd71c5f545b2 x86_64/xorg-x11-server-Xdmx-1.0.1-9.fc5.6.x86_64.rpm
7dc75615956287b0760c1d1a7d24edd18569082d x86_64/xorg-x11-server-Xorg-1.0.1-9.fc5.6.x86_64.rpm
7029e398ec32b43587ef086beaf10eb9d418d67b x86_64/debug/xorg-x11-server-debuginfo-1.0.1-9.fc5.6.x86_64.rpm
b60d8bff1f26d7e0b9f51a79cee40027d2e07c37 x86_64/xorg-x11-server-sdk-1.0.1-9.fc5.6.x86_64.rpm
f58c87e4d8f5516ecd2b45fe587ed674836afc0c x86_64/xorg-x11-server-Xvfb-1.0.1-9.fc5.6.x86_64.rpm
aa31c14207688f27c643c5ec6f87a1818abfb8c7 x86_64/xorg-x11-server-Xnest-1.0.1-9.fc5.6.x86_64.rpm
2fd12c5b9fedb57904ca673021f3e034a235c525 i386/xorg-x11-server-Xvfb-1.0.1-9.fc5.6.i386.rpm
835f3ccdef3cfeb919d08bc936bf879ae091729b i386/xorg-x11-server-Xorg-1.0.1-9.fc5.6.i386.rpm
dddf2d89136fb6a53daf594efc8fed807d883b24 i386/xorg-x11-server-sdk-1.0.1-9.fc5.6.i386.rpm
3a4e4f3c858d66e49c20b87c5be7f106b81714e3 i386/debug/xorg-x11-server-debuginfo-1.0.1-9.fc5.6.i386.rpm
023ffc9987ef19dcb88bdf19f518fe4425b4c25f i386/xorg-x11-server-Xdmx-1.0.1-9.fc5.6.i386.rpm
299fdd78701a4871982f0ab026bf87acd8e27b40 i386/xorg-x11-server-Xnest-1.0.1-9.fc5.6.i386.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

249e8a31cfe7082a1408ec27e29880ae906d0c81 SRPMS/xorg-x11-server-1.1.1-47.4.fc6.src.rpm
249e8a31cfe7082a1408ec27e29880ae906d0c81 noarch/xorg-x11-server-1.1.1-47.4.fc6.src.rpm
d849adfc51f7cd5dda4134d260c84a3ce6438af6 ppc/xorg-x11-server-Xnest-1.1.1-47.4.fc6.ppc.rpm
cd0f6f406e9a6162424bd276720335019bfe38bd ppc/xorg-x11-server-Xdmx-1.1.1-47.4.fc6.ppc.rpm
a6a9bdfb608bd947f590daf478beb66d3941ee54 ppc/xorg-x11-server-Xephyr-1.1.1-47.4.fc6.ppc.rpm
4b4af73696cb58c4b62c956c07f0102b91d4c8da ppc/debug/xorg-x11-server-debuginfo-1.1.1-47.4.fc6.ppc.rpm
8870251eb1bf7d8238f34c33672c72377336c0da ppc/xorg-x11-server-Xorg-1.1.1-47.4.fc6.ppc.rpm
232d8fb6873f6e83973a314a2e75707c2df84ff9 ppc/xorg-x11-server-Xvfb-1.1.1-47.4.fc6.ppc.rpm
3a2537987e444485398e5fb2767cf10d5751c8fe ppc/xorg-x11-server-sdk-1.1.1-47.4.fc6.ppc.rpm
a860b9f86d4c1e1f08296c6c3694e578eff848d1 x86_64/debug/xorg-x11-server-debuginfo-1.1.1-47.4.fc6.x86_64.rpm
e0878787773a58bcfa5f46283c6c578b08857848 x86_64/xorg-x11-server-Xnest-1.1.1-47.4.fc6.x86_64.rpm
5e75084832244956a233bba1a62d605ef75ba9de x86_64/xorg-x11-server-Xdmx-1.1.1-47.4.fc6.x86_64.rpm
0c32af3f137b773b0fdf0101abeda3396037eeb7 x86_64/xorg-x11-server-sdk-1.1.1-47.4.fc6.x86_64.rpm
02b64a99b6ef4220f485fa4f5938683729b0774e x86_64/xorg-x11-server-Xorg-1.1.1-47.4.fc6.x86_64.rpm
3ebd05c6bef3cb8112795108021cc8e989563a32 x86_64/xorg-x11-server-Xvfb-1.1.1-47.4.fc6.x86_64.rpm
8bf95b24f08a91a7f8ab102a88e4725576f9d299 x86_64/xorg-x11-server-Xephyr-1.1.1-47.4.fc6.x86_64.rpm
26771eb4e10cc78259f8b240d28b79b78f9a354b i386/debug/xorg-x11-server-debuginfo-1.1.1-47.4.fc6.i386.rpm
454f4052e55a0bb0950cadd229b8aa9e2dd5f0aa i386/xorg-x11-server-Xnest-1.1.1-47.4.fc6.i386.rpm
10a006aada5197713b3b88e25706b9d0fbe724fe i386/xorg-x11-server-Xdmx-1.1.1-47.4.fc6.i386.rpm
4c5d7ca8c7c1af0c4b998f90762606b8b1b301b3 i386/xorg-x11-server-Xvfb-1.1.1-47.4.fc6.i386.rpm
fb3ffd2ec7ede364e6b8eb3772d71f52d2257676 i386/xorg-x11-server-Xorg-1.1.1-47.4.fc6.i386.rpm
fd0370a4a55c2923b87f91ac968a89d9cd29666c i386/xorg-x11-server-sdk-1.1.1-47.4.fc6.i386.rpm
5188850d0723dd08f89fb9f3c1332433de769f8d i386/xorg-x11-server-Xephyr-1.1.1-47.4.fc6.i386.rpm

ChangeLog

2007-01-11 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.
 
 

Search
      

Mailinglist
    
 

Sun Logical Domain Manager Local Privilege Escalation Vulnerability

Sun StarOffice/StarSuite EMF Handling Buffer Overflow Vulnerability

Sun Java Messaging Server Cross Site Scripting Vulnerability

Sun Solaris IP Filter NAT Service DNS Cache Poisoning Vulnerability

Sun Java System Identity Manager Security Bypass Vulnerabilities

Sun Solaris DHCP Buffer Overflow and Denial of Service

Sun Solstice X.25 "/dev/xty" Local Denial of Service Vulnerability

Cisco IOS/CatOS VLAN Trunking Protocol DoS Vulnerability

Cisco PIX and ASA Security Bypass and Denial of Service

Cisco Unity Security Bypass and Denial of Service

Cisco UCM SIP Remote Denial of Service

Cisco IOS Denial of Service and Security Bypass Vulnerabilities

Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities

Cisco Secure ACS EAP Remote Denial Of Service Vulnerability

Mozilla Products Code Execution and Security Bypass Vulnerabilities

Mozilla Firefox Shortcut Handlingg Information Disclosure Vulnerability

Mozilla Products Code Execution and Security Bypass Vulnerabilities

Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability

Mozilla Products Remote Code Execution and Security Bypass Issues

Mozilla Products Code Execution and Injection Vulnerabilities

Mozilla JavaScript Garbage Collector Code Execution Vulnerability

Copyright 2003-2008 © FrSIRT.COM - Privacy Policy