---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-433
2004-11-17
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : xorg-x11
Version     : 6.7.0
Release     : 10
Summary     : The basic fonts, programs and docs for an X workstation.
Description :
X.org X11 is an open source implementation of the X Window System.  It
provides the basic low level functionality which full fledged
graphical user interfaces (GUIs) such as GNOME and KDE are designed
upon.

---------------------------------------------------------------------
Update Information:

Several integer overflow flaws in the X.Org libXpm library used to decode
XPM (X PixMap) images have been found and addressed. An attacker could
create a carefully crafted XPM file which would cause an application to
crash or potentially execute arbitrary code if opened by a victim.  The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2004-0914 to this issue.

Users are advised to upgrade to these erratum packages, which contain
backported security patches as well as other bug fixes.
---------------------------------------------------------------------
* Mon Nov 15 2004 Kristian Høgsberg <krh@redhat.com> 6.7.0-10

- Added xorg-x11-6.7.0-xpm-security-fixes-CAN-2004-0914.patch to fix a
   number of Xpm issues found by Thomas Biege <thomas@suse.de>
   (#136169)

---------------------------------------------------------------------
This update can be downloaded from:
     

124c9981637617da46d15f7b195e9ff2  SRPMS/xorg-x11-6.7.0-10.src.rpm
fbac70a586ce7c30b6cd9b8eb7c81ddc  x86_64/xorg-x11-6.7.0-10.x86_64.rpm
ef9f482aead8998f6b7a865f15a7ea26  x86_64/xorg-x11-devel-6.7.0-10.x86_64.rpm
8633a13158d102139d4bc2b3e0e2e44e  x86_64/xorg-x11-font-utils-6.7.0-10.x86_64.rpm
a02215c532e9e2be4b295332a8a0f174  x86_64/xorg-x11-xfs-6.7.0-10.x86_64.rpm
c18b23c44d9d6d0aafa04b8a6c8c158a  x86_64/xorg-x11-twm-6.7.0-10.x86_64.rpm
0c869d822f947bb93c0a952d852e4c6b  x86_64/xorg-x11-xdm-6.7.0-10.x86_64.rpm
0d0c16933d98d794c1e535134313276b  x86_64/xorg-x11-libs-6.7.0-10.x86_64.rpm
7229fee9eaf7e57292524acdf588e6ba  x86_64/xorg-x11-libs-data-6.7.0-10.x86_64.rpm
cd4b7a3208195c0ec02561312c7a33c6  x86_64/xorg-x11-base-fonts-6.7.0-10.x86_64.rpm
341b394049a46eced63bde677df071bd  x86_64/xorg-x11-truetype-fonts-6.7.0-10.x86_64.rpm
c22118a03a6b98130941b3b6ab181086  x86_64/xorg-x11-syriac-fonts-6.7.0-10.x86_64.rpm
30254022e237c5b0a595ed51ba82efb3  x86_64/xorg-x11-75dpi-fonts-6.7.0-10.x86_64.rpm
8d61afbe052143aadef744189c4785ba  x86_64/xorg-x11-100dpi-fonts-6.7.0-10.x86_64.rpm
0d8fb9084a5d70aef72442683c17d55a  x86_64/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-10.x86_64.rpm
28f2517345bd53cc6eff88205ef418cb  x86_64/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-10.x86_64.rpm
5a5d620ec4046530dc4cc9761ff05a5f  x86_64/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-10.x86_64.rpm
75dc21cf6d5c978c8245d7639957bc1d  x86_64/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-10.x86_64.rpm
1da2604630e93685b530d4b46d47a454  x86_64/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-10.x86_64.rpm
e8922442b3ba08b20ff0aaba01b017ab  x86_64/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-10.x86_64.rpm
6fcd7052e0b32fc7ad2790bebd1e71c2  x86_64/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-10.x86_64.rpm
25cd2a14ac8ad51978e46f0fe1f5551c  x86_64/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-10.x86_64.rpm
8e44356861d1306cb63d4b55b6c4dd09  x86_64/xorg-x11-cyrillic-fonts-6.7.0-10.x86_64.rpm
c4087a80655762a8e9e55317efb34aed  x86_64/xorg-x11-doc-6.7.0-10.x86_64.rpm
e0a4dbd0a261d31b1eb95ee0ea944a95  x86_64/xorg-x11-Xnest-6.7.0-10.x86_64.rpm
d20847c9574db571ed3a9b4c5b55d68c  x86_64/xorg-x11-tools-6.7.0-10.x86_64.rpm
8b96b581a166488ab985fa9ba8d9a2a2  x86_64/xorg-x11-xauth-6.7.0-10.x86_64.rpm
f12f6861da2592627eb3bfe06e8c0df1  x86_64/xorg-x11-Mesa-libGL-6.7.0-10.x86_64.rpm
359486a9d0554885b748ef49458426ae  x86_64/xorg-x11-Mesa-libGLU-6.7.0-10.x86_64.rpm
af602a72387f7dd857997e88a9a177d6  x86_64/xorg-x11-Xvfb-6.7.0-10.x86_64.rpm
1a6ebca5b2a13d3cf0ba192b68bbaf64  x86_64/xorg-x11-sdk-6.7.0-10.x86_64.rpm
dd6ffe12805f836359305895dc6cd784  x86_64/xorg-x11-libs-6.7.0-10.i386.rpm
5469b7a87f8c5a4248652ee1e9a11377  x86_64/xorg-x11-libs-data-6.7.0-10.i386.rpm
9a2ca053b04a931f575a1be1e73a45b2  x86_64/xorg-x11-Mesa-libGL-6.7.0-10.i386.rpm
7e8a6414fcf02536847f8ae45893bfd1  x86_64/xorg-x11-Mesa-libGLU-6.7.0-10.i386.rpm
bf07fd7d60eb548ce33a9af4de36ab34  i386/xorg-x11-6.7.0-10.i386.rpm
004532cb02e2ec9acab2e9682665be83  i386/xorg-x11-devel-6.7.0-10.i386.rpm
1e86294ce6c318d389f9ee7103fc3726  i386/xorg-x11-font-utils-6.7.0-10.i386.rpm
0f942a7fda7316932de880abf56d638b  i386/xorg-x11-xfs-6.7.0-10.i386.rpm
7e1ce9816fafe9425a05068ace414757  i386/xorg-x11-twm-6.7.0-10.i386.rpm
74fac8be1caedc751ce7b2af6d95967c  i386/xorg-x11-xdm-6.7.0-10.i386.rpm
dd6ffe12805f836359305895dc6cd784  i386/xorg-x11-libs-6.7.0-10.i386.rpm
5469b7a87f8c5a4248652ee1e9a11377  i386/xorg-x11-libs-data-6.7.0-10.i386.rpm
20c9d95897d02cb28370dd8e7851a96d  i386/xorg-x11-base-fonts-6.7.0-10.i386.rpm
383ee0334a3538fba59c64ef8740a51a  i386/xorg-x11-truetype-fonts-6.7.0-10.i386.rpm
719533a4e53a723e8f26934ec81ad146  i386/xorg-x11-syriac-fonts-6.7.0-10.i386.rpm
4a055faabb847ac9decb722c7367af3b  i386/xorg-x11-75dpi-fonts-6.7.0-10.i386.rpm
6e27f8afd9231e185c81734cc013cc46  i386/xorg-x11-100dpi-fonts-6.7.0-10.i386.rpm
1e324d133b882faf0178151d08836a16  i386/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-10.i386.rpm
27c4d03568cda36517388a822b238a6f  i386/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-10.i386.rpm
9bfd98c6c590ce47623611811065c9ac  i386/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-10.i386.rpm
df1b1aa3cd36426ea068914e8161eefe  i386/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-10.i386.rpm
e5184c3f401471c9f83fbca16bc11dc2  i386/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-10.i386.rpm
466d1293d1db57ef47a5fdd915798bad  i386/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-10.i386.rpm
89445862d48da8207e3400182129932b  i386/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-10.i386.rpm
61dd8cb3b03ae37e00a9585dd38f76eb  i386/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-10.i386.rpm
ac93c1cf6345d2606f91b439e00c5eef  i386/xorg-x11-cyrillic-fonts-6.7.0-10.i386.rpm
3d3ea8a3575122bd3a63d61ca3501aeb  i386/xorg-x11-doc-6.7.0-10.i386.rpm
f802265b36ea9a7c5ea86f68648ae4aa  i386/xorg-x11-Xnest-6.7.0-10.i386.rpm
4e3eea649d7872a069770c8130201285  i386/xorg-x11-tools-6.7.0-10.i386.rpm
c96728b5bba2d9b3d1d1c2fdb64a4c50  i386/xorg-x11-xauth-6.7.0-10.i386.rpm
9a2ca053b04a931f575a1be1e73a45b2  i386/xorg-x11-Mesa-libGL-6.7.0-10.i386.rpm
7e8a6414fcf02536847f8ae45893bfd1  i386/xorg-x11-Mesa-libGLU-6.7.0-10.i386.rpm
b64c1b9229d2bbc866321620993de1da  i386/xorg-x11-Xvfb-6.7.0-10.i386.rpm
7422827cddd9b5510f44f3c765a0adf2  i386/xorg-x11-sdk-6.7.0-10.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------

--
fedora-announce-list mailing list
fedora-announce-list@redhat.com 
fedora-announce-list Info Page

Fedora: xorg-x11-6.7.0-10 update

November 17, 2004
Several integer overflow flaws in the X.Org libXpm library used to decode XPM (X PixMap) images have been found and addressed

Summary

X.org X11 is an open source implementation of the X Window System. It

provides the basic low level functionality which full fledged

graphical user interfaces (GUIs) such as GNOME and KDE are designed

upon.

Update Information:

Several integer overflow flaws in the X.Org libXpm library used to decode XPM (X PixMap) images have been found and addressed. An attacker could create a carefully crafted XPM file which would cause an application to crash or potentially execute arbitrary code if opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0914 to this issue.

Users are advised to upgrade to these erratum packages, which contain backported security patches as well as other bug fixes. * Mon Nov 15 2004 Kristian Høgsberg <krh@redhat.com> 6.7.0-10

- Added xorg-x11-6.7.0-xpm-security-fixes-CAN-2004-0914.patch to fix a number of Xpm issues found by Thomas Biege <thomas@suse.de> (#136169)

This update can be downloaded from:


124c9981637617da46d15f7b195e9ff2 SRPMS/xorg-x11-6.7.0-10.src.rpm fbac70a586ce7c30b6cd9b8eb7c81ddc x86_64/xorg-x11-6.7.0-10.x86_64.rpm ef9f482aead8998f6b7a865f15a7ea26 x86_64/xorg-x11-devel-6.7.0-10.x86_64.rpm ...

Read the Full Advisory

Change Log

References

Fedora Update Notification FEDORA-2004-433 2004-11-17 Product : Fedora Core 2 Name : xorg-x11 Version : 6.7.0 Release : 10 Summary : The basic fonts, programs and docs for an X workstation. Description : X.org X11 is an open source implementation of the X Window System. It provides the basic low level functionality which full fledged graphical user interfaces (GUIs) such as GNOME and KDE are designed upon.

Update Instructions

Severity
Product : Fedora Core 2
Name : xorg-x11
Version : 6.7.0
Release : 10
Summary : The basic fonts, programs and docs for an X workstation.

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved