AnNyung Official Homepage Home > Update [ 1.3 ]  

HOME
What is AnNyung
Documents
Packages System
White Paper
Download
Update
  . 3.x [RSS]
  . 2.x [RSS]
  . 1.3 [RSS]
  . 1.2 [RSS]
  . 1.1 [RSS]
  . 1.0 [RSS]
FAQ
Hardware
RoadMap
Gallery

  Go oops.org
  AnNyung banner 88x31

  AnNyung 1 banner 80x15
  AnNyung 2 banner 80x15
  AnNyung 3 banner 80x15
  AnNyung banner 80x15
  AnNyung banner 80x15



XFree86 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.

문서번호 : 1176803672
업데이트 : 2007.04.17


상세내용

CVE-2007-1003 :
Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList function
in the XC-MISC extension in the X.Org X11 server (xserver) 7.1-1.1.0,
and other versions before 20070403, allows remote authenticated users
to execute arbitrary code via a large expression, which results in memory
corruption.

CVE-2007-1351 :
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org
libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote
authenticated users to execute arbitrary code via crafted BDF fonts, which
result in a heap overflow.

CVE-2007-1352 :
Integer overflow in the FontFileInitTable function in X.Org libXfont before
20070403 allows remote authenticated users to execute arbitrary code via a
long first line in the fonts.dir file, which results in a heap overflow.

CVE-2007-1667 :
Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in
X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for
ImageMagick, allow user-assisted remote attackers to cause a denial of
service (crash) or obtain sensitive information via crafted images with
large or negative values that trigger a buffer overflow.


Autoupdates 지원 : 지원


update 패키지

  RPMS :

    . XFree86-libs-4.1.0-82.i686.rpm
    . XFree86-devel-4.1.0-82.i686.rpm
    . XFree86-4.1.0-82.i686.rpm
    . XFree86-xfs-4.1.0-82.i686.rpm

  SRPMS :

    . XFree86-4.1.0-82.src.rpm


참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1351
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1667



    



 Home > Update [ 1.3 ]

Copyright 2024 OOPS Development Organization 
LAST MODIFIED: 2018/04/10