Novell Home

CVE-2007-6428

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2007-6428 at MITRE

Description

The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.

NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N)

Novell/SUSE information

Novell Bugzilla entry: 345128

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE LINUX 10.1
  • NX >= 1.5.0-41.5
Novell Linux Desktop 9 for x86_64
  • XFree86-libs >= 4.3.99.902-43.94
  • XFree86-libs-32bit >= 9-200801062003
  • XFree86-server >= 4.3.99.902-43.94
sles9-oes.x86
YOU Patch Nr: 12040
Novell Linux Desktop 9 for x86
Open Enterprise Server
  • XFree86-libs >= 4.3.99.902-43.94
  • XFree86-server >= 4.3.99.902-43.94
sles9-oes.x86
YOU Patch Nr: 12040
Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Open Enterprise Server
  • XFree86-Xnest >= 4.3.99.902-43.94
  • XFree86-Xvfb >= 4.3.99.902-43.94
core9.s390
sles9-oes.x86
YOU Patch Nr: 12043
SUSE LINUX 10.1
  • xorg-x11-Xnest >= 6.9.0-50.54.5
  • xorg-x11-Xvfb >= 6.9.0-50.54.5
  • xorg-x11-devel >= 6.9.0-50.54.5
  • xorg-x11-devel-32bit >= 6.9.0-50.54.5
  • xorg-x11-devel-64bit >= 6.9.0-50.54.5
  • xorg-x11-libs >= 6.9.0-50.54.5
  • xorg-x11-libs-32bit >= 6.9.0-50.54.5
  • xorg-x11-libs-64bit >= 6.9.0-50.54.5
  • xorg-x11-server >= 6.9.0-50.54.5
SUSE LINUX 10.1
  • xgl >= cvs_060522-0.37.5

© 2014 Novell