CentOS Local Security Checks : CentOS: Security Advisory for xorg-x11-server-common (CESA-2022:0003)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.883693

Categoría: CentOS Local Security Checks

Título: CentOS: Security Advisory for xorg-x11-server-common (CESA-2022:0003)

Resumen: The remote host is missing an update for the 'xorg-x11-server-common'; package(s) announced via the CESA-2022:0003 advisory.

Descripción: Summary:
The remote host is missing an update for the 'xorg-x11-server-common'
package(s) announced via the CESA-2022:0003 advisory.

Vulnerability Insight:
X.Org is an open-source implementation of the X Window System. It provides
the basic low-level functionality that full-fledged graphical user
interfaces are designed upon.

Security Fix(es):

* xorg-x11-server: SProcRenderCompositeGlyphs out-of-bounds access
(CVE-2021-4008)

* xorg-x11-server: SProcXFixesCreatePointerBarrier out-of-bounds access
(CVE-2021-4009)

* xorg-x11-server: SProcScreenSaverSuspend out-of-bounds access
(CVE-2021-4010)

* xorg-x11-server: SwapCreateRegister out-of-bounds access (CVE-2021-4011)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Affected Software/OS:
'xorg-x11-server-common' package(s) on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2021-4008
Debian Security Information: DSA-5027 (Google Search)
https://www.debian.org/security/2021/dsa-5027
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PDHYZM6FII35JA7J275MFCJO6ADJUPQX/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXTRPFEQLFZ6NT2LPLZEID664RGC3OCC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NKLSZCY47QK4RCJFXITYFALCGPJAFXOK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T57DCF726O5LLTST4NBL5PQ7DLPB46HT/
https://security.gentoo.org/glsa/202305-30
https://www.zerodayinitiative.com/advisories/ZDI-21-1547/
https://lists.x.org/archives/xorg-announce/2021-December/003122.html
https://lists.x.org/archives/xorg-announce/2021-December/003124.html
https://lists.debian.org/debian-lts-announce/2021/12/msg00035.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-4009
https://www.zerodayinitiative.com/advisories/ZDI-21-1548/
Common Vulnerability Exposure (CVE) ID: CVE-2021-4010
https://www.zerodayinitiative.com/advisories/ZDI-21-1549/
Common Vulnerability Exposure (CVE) ID: CVE-2021-4011
https://www.zerodayinitiative.com/advisories/ZDI-21-1550/

Copyright Copyright (C) 2022 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.883693
Categoría:	CentOS Local Security Checks
Título:	CentOS: Security Advisory for xorg-x11-server-common (CESA-2022:0003)
Resumen:	The remote host is missing an update for the 'xorg-x11-server-common'; package(s) announced via the CESA-2022:0003 advisory.
Descripción:	Summary: The remote host is missing an update for the 'xorg-x11-server-common' package(s) announced via the CESA-2022:0003 advisory. Vulnerability Insight: X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix(es): * xorg-x11-server: SProcRenderCompositeGlyphs out-of-bounds access (CVE-2021-4008) * xorg-x11-server: SProcXFixesCreatePointerBarrier out-of-bounds access (CVE-2021-4009) * xorg-x11-server: SProcScreenSaverSuspend out-of-bounds access (CVE-2021-4010) * xorg-x11-server: SwapCreateRegister out-of-bounds access (CVE-2021-4011) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'xorg-x11-server-common' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-4008 Debian Security Information: DSA-5027 (Google Search) https://www.debian.org/security/2021/dsa-5027 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PDHYZM6FII35JA7J275MFCJO6ADJUPQX/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXTRPFEQLFZ6NT2LPLZEID664RGC3OCC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NKLSZCY47QK4RCJFXITYFALCGPJAFXOK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T57DCF726O5LLTST4NBL5PQ7DLPB46HT/ https://security.gentoo.org/glsa/202305-30 https://www.zerodayinitiative.com/advisories/ZDI-21-1547/ https://lists.x.org/archives/xorg-announce/2021-December/003122.html https://lists.x.org/archives/xorg-announce/2021-December/003124.html https://lists.debian.org/debian-lts-announce/2021/12/msg00035.html Common Vulnerability Exposure (CVE) ID: CVE-2021-4009 https://www.zerodayinitiative.com/advisories/ZDI-21-1548/ Common Vulnerability Exposure (CVE) ID: CVE-2021-4010 https://www.zerodayinitiative.com/advisories/ZDI-21-1549/ Common Vulnerability Exposure (CVE) ID: CVE-2021-4011 https://www.zerodayinitiative.com/advisories/ZDI-21-1550/
Copyright	Copyright (C) 2022 Greenbone Networks GmbH