(OpenBSD Issues Fix) X11 libx11 Integer Overflow Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1017878 |
|
SecurityTracker URL: http://securitytracker.com/id/1017878
|
|
CVE Reference:
CVE-2007-1667
(Links to External Site)
|
Date: Apr 5 2007
|
Impact:
Denial of service via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): prior to 1.0.3
|
Description:
A vulnerability was reported in libx11. A remote user can cause denial of service conditions.
A remote user can create a specially crafted image that, when processed by the target application, will trigger an integer overflow in XGetPixel() and cause the target application to crash.
This was reported in a Debian bug report.
|
Impact:
A remote user can cause denial of service conditions.
|
Solution:
OpenBSD has issued the following patches.
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/021_xorg.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.0/common/011_xorg.patch
|
Vendor URL: www.x.org/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
UNIX (OpenBSD)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Thu, 5 Apr 2007 00:16:13 -0400
Subject: OpenBSD
|
SECURITY FIX: April 4, 2007 All architectures
Multiple vulnerabilities have been discovered in X.Org.
XC-MISC extension ProcXCMiscGetXIDList memory corruption vulnerability, BDFFont parsing
integer overflow vulnerability, fonts.dir file parsing integer overflow vulnerability,
multiple integer overflows in the XGetPixel() and XInitImage functions in ImUtil.c.
CVE-2007-1003, CVE-2007-1351, CVE-2007-1352, CVE-2007-1667.
A source code patch exists which remedies this problem.
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/021_xorg.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.0/common/011_xorg.patch
|
|
