Upstream information
Description
Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
National Vulnerability Database | |
---|---|
Base Score | 6.8 |
Vector | AV:N/AC:L/Au:S/C:C/I:N/A:N |
Access Vector | Network |
Access Complexity | Low |
Authentication | Single |
Confidentiality Impact | Complete |
Integrity Impact | None |
Availability Impact | None |
- SUSE-SA:2008:027, published Fri, 13 Jun 2008 14:00:00 +0000
- SUSE-SR:2008:019, published Fri, 26 Sep 2008 16:00:00 +0000
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 11 SP4 GA xorg-x11-server-sdk-7.4-27.105.1 |
SUSE Linux Enterprise Server 11 SP1 |
| Patchnames: SUSE Linux Enterprise Server 11 SP1 GA xorg-x11-Xvnc-7.4-27.19.19 |
SUSE Linux Enterprise Server 11 SP2 |
| Patchnames: SUSE Linux Enterprise Server 11 SP2 GA xorg-x11-Xvnc-7.4-27.60.5 |
SUSE Linux Enterprise Server 11 SP3 |
| Patchnames: SUSE Linux Enterprise Server 11 SP3 GA xorg-x11-Xvnc-7.4-27.81.7 |
SUSE Linux Enterprise Server 11 SP4 |
| Patchnames: SUSE Linux Enterprise Server 11 SP4 GA xorg-x11-Xvnc-7.4-27.105.1 SUSE Linux Enterprise Software Development Kit 11 SP4 GA xorg-x11-server-sdk-7.4-27.105.1 |
openSUSE Tumbleweed |
| Patchnames: openSUSE Tumbleweed GA xorg-x11-server-1.20.13-1.2 |