Upstream information
Description
Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
National Vulnerability Database | |
---|---|
Base Score | 10 |
Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | Complete |
Integrity Impact | Complete |
Availability Impact | Complete |
- SUSE-SA:2008:027, published Fri, 13 Jun 2008 14:00:00 +0000
- SUSE-SR:2008:019, published Fri, 26 Sep 2008 16:00:00 +0000
- TID7021676, published Sa 3. Mär 10:24:18 CET 2018
- TID7021823, published Sa 3. Mär 10:24:20 CET 2018
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 11 SP4 GA xorg-x11-server-sdk-7.4-27.105.1 |
SUSE Linux Enterprise Server 11 SP1 |
| Patchnames: SUSE Linux Enterprise Server 11 SP1 GA xorg-x11-Xvnc-7.4-27.19.19 |
SUSE Linux Enterprise Server 11 SP2 |
| Patchnames: SUSE Linux Enterprise Server 11 SP2 GA xorg-x11-Xvnc-7.4-27.60.5 |
SUSE Linux Enterprise Server 11 SP3 |
| Patchnames: SUSE Linux Enterprise Server 11 SP3 GA xorg-x11-Xvnc-7.4-27.81.7 |
SUSE Linux Enterprise Server 11 SP4 |
| Patchnames: SUSE Linux Enterprise Server 11 SP4 GA xorg-x11-Xvnc-7.4-27.105.1 SUSE Linux Enterprise Software Development Kit 11 SP4 GA xorg-x11-server-sdk-7.4-27.105.1 |
openSUSE Tumbleweed |
| Patchnames: openSUSE Tumbleweed GA xorg-x11-server-1.20.13-1.2 |