Novell

This is Your Open EnterpriseTM

XFree86 20080604

(f1d6c99d6205780cd2ffac2d4f799210)

This document (5027949) is provided subject to the disclaimer at the end of this document.

patches this patch supersedes

This patch does not supersede any other patches.

patches that supersede this patch

This patch is not superseded by any other patches.

patch attributes

Architecture: x86
Security patch: YesView security alerts.
Priority: Mandatory
Distribution Type: Public
http://download.novell.com/Download?buildid=bhy49vP3hsA~

document

Revision: 1
Document ID: 5027949
Creation Date: 2008-06-30 23:21:36

abstract

XFree86
SuSE Linux Maintenance Web (f1d6c99d6205780cd2ffac2d4f799210)

Applies to

Package: XFree86-Xnest XFree86-Xprt XFree86-Xvfb XFree86-Xvnc XFree86-server
Product(s):
SUSE CORE 9 for x86
SUSE CORE 9 for Itanium Processor Family
SUSE CORE 9 for IBM POWER
SUSE CORE 9 for AMD64 and Intel EM64T
Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Novell Linux POS 9
Open Enterprise Server
Patch: patch-12170

Release: 20080604
Obsoletes: none

details

Indications

Install this update.

Contraindications

None.

Problem description

This update fixes multiple vulnerabilities reported by iDefense:

  • CVE-2008-2360 - RENDER Extension heap buffer overflow
  • CVE-2008-2361 - RENDER Extension crash
  • CVE-2008-2362 - RENDER Extension memory corruption
  • CVE-2008-1379 - MIT-SHM arbitrary memory read
  • CVE-2008-1377 - RECORD and Security extensions memory corruption

Solution

Please install the updates provided at the location noted below.

Installation notes

This update is provided as an RPM package that can easily be installed onto a running system by using this command:

rpm -Fvh XFree86-Xnest.rpm XFree86-Xprt.rpm XFree86-Xvfb.rpm XFree86-Xvnc.rpm XFree86-server.rpm

file contents

Files IncludedSizeDate
XFree86-Xvnc-4.3.99.902-43.96.i586.rpm1.5 MB (1619729)2008-06-30 20:47:18
XFree86-server-4.3.99.902-43.96.i586.rpm4.3 MB (4589823)2008-06-30 20:47:21
description.html314 bytes2008-06-30 20:47:21
XFree86-Xnest-4.3.99.902-43.96.i586.rpm1.3 MB (1441166)2008-06-26 15:33:14
XFree86-Xprt-4.3.99.902-43.96.i586.rpm2.2 MB (2410126)2008-06-30 20:47:16
XFree86-Xvfb-4.3.99.902-43.96.i586.rpm1.4 MB (1544230)2008-06-30 20:47:17
readme_5027949.htmlN/A2008-06-30 23:21:42

source packages

Download the source code of the patches for maintained products.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

Novell is a registered trademark of Novell, Inc. in the United States and other countries. SUSE is a registered trademark of SUSE Linux AG, a Novell business. *All third-party trademarks are the property of their respective owners.

© 2007 Novell, Inc. All Rights Reserved.