XFree86 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1168584780
업데이트 : 2007.01.12
상세내용
CVE-2006-6101 :
Integer overflow in the ProcRenderAddGlyphs function in the Render extension
for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users
to execute arbitrary code via a crafted X protocol request that triggers memory
corruption during processing of glyph management data structures.
CVE-2006-6102 :
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for
X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to
execute arbitrary code via a crafted X protocol request that triggers memory
corruption during processing of unspecified data structures.
CVE-2006-6103 :
Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for
X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to
execute arbitrary code via a crafted X protocol request that triggers memory
corruption during processing of unspecified data structures.
Autoupdates 지원 : 지원
update 패키지
RPMS :
. XFree86-libs-4.1.0-78.i686.rpm
. XFree86-devel-4.1.0-78.i686.rpm
. XFree86-4.1.0-78.i686.rpm
. XFree86-xfs-4.1.0-78.i686.rpm
SRPMS :
. XFree86-4.1.0-78.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6101
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6103
|