Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 200710-11 ] X Font Server: Multiple Vulnerabilities
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Veteran
Veteran


Joined: 12 May 2004
Posts: 1569

PostPosted: Fri Oct 12, 2007 10:26 pm    Post subject: [ GLSA 200710-11 ] X Font Server: Multiple Vulnerabilities Reply with quote

Gentoo Linux Security Advisory

Title: X Font Server: Multiple Vulnerabilities (GLSA 200710-11)
Severity: high
Exploitable: local
Date: October 12, 2007
Bug(s): #185660, #194606
ID: 200710-11

Synopsis


Three vulnerabilities have been discovered in the X Font Server possibly
allowing local attackers to gain elevated privileges.


Background


The X.Org X11 X Font Server provides a standard mechanism for an X
server to communicate with a font renderer.


Affected Packages

Package: x11-apps/xfs
Vulnerable: < 1.0.5
Unaffected: >= 1.0.5
Architectures: All supported architectures


Description


iDefense reported that the xfs init script does not correctly handle a
race condition when setting permissions of a temporary file
(CVE-2007-3103). Sean Larsson discovered an integer overflow
vulnerability in the build_range() function possibly leading to a
heap-based buffer overflow when handling "QueryXBitmaps" and
"QueryXExtents" protocol requests (CVE-2007-4568). Sean Larsson also
discovered an error in the swap_char2b() function possibly leading to a
heap corruption when handling the same protocol requests
(CVE-2007-4990).


Impact


The first issue would allow a local attacker to change permissions of
arbitrary files to be world-writable by performing a symlink attack.
The second and third issues would allow a local attacker to execute
arbitrary code with privileges of the user running the X Font Server,
usually xfs.


Workaround


There is no known workaround at this time.


Resolution


All X Font Server users should upgrade to the latest version:
Code:
# emerge --sync
    # emerge --ask --oneshot --verbose ">=x11-apps/xfs-1.0.5"


References

CVE-2007-3103
CVE-2007-4568
CVE-2007-4990


Last edited by GLSA on Sat Apr 23, 2011 4:25 am; edited 4 times in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum