Test ID:	1.3.6.1.4.1.25623.1.0.50983
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2003:065
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2003:065. XFree86 is an implementation of the X Window System, which provides the graphical user interface, video drivers, etc. for Linux systems. A number of security vulnerabilities have been found and fixed. In addition, various other bug fixes, driver updates, and other enhancements have been made. Security fixes have been made available for Xterm, xdm, the MIT-SHM extension of the X server, and permissions of the /dev/dri directory. Driver updates and other fixes: Updates have been provided to the Rage128 (r128) video driver, ATI Radeon video driver (radeon), S3 Savage driver (savage). A long-standing XFree86 bug has been fixed. This bug occurs when any form of system clock skew (such as NTP clock synchronization, APM suspend/resume cycling on laptops, daylight savings time changeover, or even manually setting the system clock forward or backward) could result in odd application behavior, mouse and keyboard lockups, or even an X server hang or crash. Users are advised to upgrade to these updated packages, which contain XFree86 version 4.1.0 with patches correcting these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2003-065.html Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2001-1409 http://www.redhat.com/support/errata/RHSA-2003-067.html http://sunsolve.sun.com/search/document.do?assetkey=1-77-1017429.1-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-228529-1 Common Vulnerability Exposure (CVE) ID: CVE-2002-0164 BugTraq ID: 4396 http://www.securityfocus.com/bid/4396 Bugtraq: 20021024 GLSA: xfree (Google Search) http://marc.info/?l=bugtraq&m=103547625009363&w=2 Caldera Security Advisory: CSSA-2002-009.0 http://www.linuxsecurity.com/advisories/caldera_advisory-2006.html Caldera Security Advisory: CSSA-2002-SCO.14 ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.14/CSSA-2002-SCO.14.txt Conectiva Linux advisory: CLSA-2002:529 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000529 Debian Security Information: DSA-380 (Google Search) http://www.debian.org/security/2003/dsa-380 SGI Security Advisory: 20021001-01-P ftp://patches.sgi.com/support/free/security/advisories/20021001-01-P XForce ISS Database: xfree86-mitshm-memory-access(8706) https://exchange.xforce.ibmcloud.com/vulnerabilities/8706 Common Vulnerability Exposure (CVE) ID: CVE-2002-1510 Conectiva Linux advisory: CLA-2002:533 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000533 http://wuarchive.wustl.edu/mirrors/NetBSD/NetBSD-current/xsrc/xfree/xc/programs/Xserver/hw/xfree86/CHANGELOG http://www.redhat.com/support/errata/RHSA-2003-064.html http://www.redhat.com/support/errata/RHSA-2003-065.html http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55602 http://www.iss.net/security_center/static/11389.php Common Vulnerability Exposure (CVE) ID: CVE-2003-0063 BugTraq ID: 6940 http://www.securityfocus.com/bid/6940 Bugtraq: 20030224 Terminal Emulator Security Issues (Google Search) http://marc.info/?l=bugtraq&m=104612710031920&w=2 http://www.openwall.com/lists/oss-security/2024/06/15/1 http://www.redhat.com/support/errata/RHSA-2003-066.html http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.html http://www.iss.net/security_center/static/11414.php Common Vulnerability Exposure (CVE) ID: CVE-2003-0071 BugTraq ID: 6950 http://www.securityfocus.com/bid/6950 http://www.iss.net/security_center/static/11415.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.