Conectiva Local Security Checks : Conectiva Security Advisory CLA-2002:533

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.51542

Categoría: Conectiva Local Security Checks

Título: Conectiva Security Advisory CLA-2002:533

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory CLA-2002:533.

XFree86 is a freely redistributable open-source implementation of the
X Window System, which is a client/server interface between display
hardware and the desktop environment.

This advisory addresses several vulnerabilities[1] in XFree86-4.0.1
in Conectiva Linux 6.0 and XFree86-4.0.3 in Conectiva Linux 7.0.
Conectiva Linux 8 was previously updated[2] and already contains
these fixes.

It also fixes several vulnerabilities present in XFree86 version
3.3.6a, which was distributed for compatibility reasons with
Conectiva Linux 6.0 and 7.0.

Solution:
The apt tool can be used to perform RPM package upgrades
by running 'apt-get update' followed by 'apt-get upgrade'

http://www.xfree86.org/security/
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000529&idioma=en
http://marc.theaimsgroup.com/?l=vuln-dev&m=100118958310463&w=2
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0955
http://www.xfree86.org/devel/archives/patch/2001-Apr/0069.shtml
http://www.xfree86.org/pipermail/cvs-commit/2001-October/003140.html
http://www.xfree86.org/pipermail/cvs-commit/2001-May/002350.html
http://www.xfree86.org/pipermail/cvs-commit/2001-March/001633.html
http://cvsweb.xfree86.org/cvsweb/~
checkout~
/xc/programs/Xserver/hw/xfree86/CHANGELOG?rev=3.390.2.341
http://www.securityspace.com/smysecure/catid.html?in=CLA-2002:533
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002002

Risk factor : High

CVSS Score:
7.2

Referencia Cruzada: BugTraq ID: 3663
BugTraq ID: 3657
Common Vulnerability Exposure (CVE) ID: CVE-2001-0955
http://www.securityfocus.com/bid/3657
http://www.securityfocus.com/bid/3663
Bugtraq: 20011207 Crashing X (Google Search)
http://marc.info/?l=bugtraq&m=100776624224549&w=2
Bugtraq: 20011208 Re: Crashing X (Google Search)
http://marc.info/?l=bugtraq&m=100784290015880&w=2
http://cvsweb.xfree86.org/cvsweb/xc/programs/Xserver/fb/fbglyph.c
http://marc.info/?l=vuln-dev&m=100118958310463&w=2
XForce ISS Database: xfree86-konqueror-bo(7673)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7673
XForce ISS Database: xfree86-xterm-title-bo(7683)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7683

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51542
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLA-2002:533
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLA-2002:533. XFree86 is a freely redistributable open-source implementation of the X Window System, which is a client/server interface between display hardware and the desktop environment. This advisory addresses several vulnerabilities[1] in XFree86-4.0.1 in Conectiva Linux 6.0 and XFree86-4.0.3 in Conectiva Linux 7.0. Conectiva Linux 8 was previously updated[2] and already contains these fixes. It also fixes several vulnerabilities present in XFree86 version 3.3.6a, which was distributed for compatibility reasons with Conectiva Linux 6.0 and 7.0. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://www.xfree86.org/security/ http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000529&idioma=en http://marc.theaimsgroup.com/?l=vuln-dev&m=100118958310463&w=2 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0955 http://www.xfree86.org/devel/archives/patch/2001-Apr/0069.shtml http://www.xfree86.org/pipermail/cvs-commit/2001-October/003140.html http://www.xfree86.org/pipermail/cvs-commit/2001-May/002350.html http://www.xfree86.org/pipermail/cvs-commit/2001-March/001633.html http://cvsweb.xfree86.org/cvsweb/~ checkout~ /xc/programs/Xserver/hw/xfree86/CHANGELOG?rev=3.390.2.341 http://www.securityspace.com/smysecure/catid.html?in=CLA-2002:533 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002002 Risk factor : High CVSS Score: 7.2
Referencia Cruzada:	BugTraq ID: 3663 BugTraq ID: 3657 Common Vulnerability Exposure (CVE) ID: CVE-2001-0955 http://www.securityfocus.com/bid/3657 http://www.securityfocus.com/bid/3663 Bugtraq: 20011207 Crashing X (Google Search) http://marc.info/?l=bugtraq&m=100776624224549&w=2 Bugtraq: 20011208 Re: Crashing X (Google Search) http://marc.info/?l=bugtraq&m=100784290015880&w=2 http://cvsweb.xfree86.org/cvsweb/xc/programs/Xserver/fb/fbglyph.c http://marc.info/?l=vuln-dev&m=100118958310463&w=2 XForce ISS Database: xfree86-konqueror-bo(7673) https://exchange.xforce.ibmcloud.com/vulnerabilities/7673 XForce ISS Database: xfree86-xterm-title-bo(7683) https://exchange.xforce.ibmcloud.com/vulnerabilities/7683
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com