Novell is now a part of Micro Focus

Skip to Content
Products
Collaboration

+ Open Workgroup Suite

GroupWise

Micro Focus Vibe

Endpoint Management

+ ZENworks Suite

Service Desk

Desktop Containers

Mobile Management

ZENworks Asset Management

ZENworks Configuration Management

ZENworks Endpoint Security Management

ZENworks Full Disk Encryption

ZENworks Patch Management

ZENworks Virtual Appliance

Learn more about ZENworks

File & Networking Services

+ File Management Suite

Business Continuity Clustering

Dynamic File Services

File Reporter

Filr

Micro Focus iPrint

Open Enterprise Server

Storage Manager
Looking for Linux? See our new home at SUSE.com
Services & Support
Help Yourself

Knowledgebase

Support Forums

Documentation

Product Support Lifecycle

Let Us Help

Open Service Request

Maintenance and Support Plans

Premium Support

Technical Support Handbook
Download

Patches

Drivers

Contribute

Participate in Beta

Report Bug

Report Software Vulnerability

Share a Tip, Trick, etc.

Cool Solutions
Consulting

Customer Center

My Profile

My Products

My Support

My Training
Partners
Communities
+ Communities
Blog—Expert Views

Blog—Technical

Free Tools

Support Forums
About Us
+ About Us
Contact Us

Our Customers

Executive Management

Job Search

Events

Media Gallery

Industry Analysts

Press Releases

Subscribe
How to Buy
+ How to Buy Overview
Request a Call

Find a Partner

Shop for Training

Volume Licensing & Buying Programs

Security update for XFree86

Knowledgebase

(Last modified: 12JAN2004)

solutions Security update for XFree86 SuSE Linux Maintenance Web (88289d1e85f1ee6ac1a1ce84ea475481)

Applies to

Product(s): SuSE Linux Desktop 1.0

Package: XFree86
Release: 20040112
Obsoletes: none

Indications

Everyone using XDM in conjunction with Kerberos should update.

Contraindications

None.

Problem description

Due to inproper checking of failure conditions of pam_setcred() in XDM while using pam_krb5 a user with valid Kerberos login credentials may get root access to the system.

Solution

Please install the updates provided at the location noted below.

Installation notes

This update is provided as an RPM package that can easily be installed onto a running system by using this command:
rpm -Fvh XFree86.rpm

links to download packages

SUSE Linux Desktop 1.0 (i386)

Download Source Packages

Download the source code of the patches for maintained products.

Disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.

Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

Customer Center

© Copyright Micro Focus or one of its affiliates

Careers
Legal
Cookie Privacy Manager

Feedback
Print
- Full
- Simple
Request a Call
Follow Us
- Facebook
- YouTube
- Twitter
- LinkedIn
- Newsletter Subscription
- RSS