---------------------------------------------------------------------- Secunia customers receive relevant and filtered advisories. Delivery is done via different channels including SMS, Email, Web, and https based XML feed. http://corporate.secunia.com/trial/38/request/ ---------------------------------------------------------------------- TITLE: SUSE update for XFree86 and Xorg SECUNIA ADVISORY ID: SA25004 VERIFY ADVISORY: http://secunia.com/advisories/25004/ CRITICAL: Less critical IMPACT: Exposure of sensitive information, Privilege escalation, DoS WHERE: Local system OPERATING SYSTEM: SUSE Linux 9.3 http://secunia.com/product/4933/ SUSE Linux 10 http://secunia.com/product/6221/ SUSE Linux 10.1 http://secunia.com/product/10796/ openSUSE 10.2 http://secunia.com/product/13375/ SuSE Linux Openexchange Server 4.x http://secunia.com/product/2001/ SuSE Linux Desktop 1.x http://secunia.com/product/2002/ SuSE Linux Enterprise Server 8 http://secunia.com/product/1171/ SUSE Linux Enterprise Server 9 http://secunia.com/product/4118/ SUSE Linux Enterprise Server 10 http://secunia.com/product/12192/ UnitedLinux 1.0 http://secunia.com/product/2003/ SOFTWARE: Novell Open Enterprise Server http://secunia.com/product/4664/ DESCRIPTION: SUSE has issued an update for XFree86 and Xorg. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose sensitive information, cause a DoS (Denial of Service), and gain escalated privileges. For more information: SA24741 SA24758 SOLUTION: Apply updated packages. x86 Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-Xvnc-7.1-33.3.i586.rpm f653bfd1f2d272f42bfed24c6eeb1971 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-libX11-7.2-15.i586.rpm dbc88177adc2c4e061cc698ac16942b7 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-libs-7.2-21.i586.rpm 90189f0fabe1a25f97ee3717fe73a268 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-server-7.2-30.6.i586.rpm 3ab84eb3fc151fce81b71b0834e0982e SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-Xnest-6.9.0-50.32.5.i586.rpm d81eceaf06b90d1f48c4e2138a94cb48 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-Xprt-6.9.0-50.32.5.i586.rpm 0aaf70eee9f9429e7472e340a368ac74 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-Xvfb-6.9.0-50.32.5.i586.rpm c00a864032826956a1e0c99bf1ed6fc7 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-Xvnc-6.9.0-50.32.5.i586.rpm 6cd779e78b4cd4d9a7e6ffe0b3394bcd ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-libs-6.9.0-50.32.5.i586.rpm 3979722de546dbc5accb94860db7e367 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-server-6.9.0-50.32.5.i586.rpm 6ea5413c97893e21c273b53278dfd166 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xorg-x11-Xnest-6.8.2-100.12.i586.rpm 24e662286dad295b861990479564bbc6 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xorg-x11-Xprt-6.8.2-100.12.i586.rpm d2eebfa2b0ecc7648ed55ed81e6e6ca0 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xorg-x11-Xvfb-6.8.2-100.12.i586.rpm 1883fead459c79ad1b8f4a1742431029 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xorg-x11-Xvnc-6.8.2-100.12.i586.rpm 2a1feeeb929b9407c94ccea5b4798bdc ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xorg-x11-libs-6.8.2-100.12.i586.rpm 647f7deea79edc9cb1bd75e42b9c36fa ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xorg-x11-server-6.8.2-100.12.i586.rpm 7371693bab6474b4eba84450c47e9856 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xorg-x11-Xnest-6.8.2-30.12.i586.rpm 9a1f51d708a343686924457782eb40ff ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xorg-x11-Xprt-6.8.2-30.12.i586.rpm 1544af7ebe5cde6e03f78219e15fe329 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xorg-x11-Xvfb-6.8.2-30.12.i586.rpm 09689cf5bd8c8a1ffea4324f6b1c797a ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xorg-x11-Xvnc-6.8.2-30.12.i586.rpm c7ec29ab8f7902a825cb060caa930dc5 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xorg-x11-libs-6.8.2-30.12.i586.rpm 455b252e226a2977bcc0c95eddb05f89 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xorg-x11-server-6.8.2-30.12.i586.rpm dfaf184254c76d904ca463459c696070 Power PC Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-Xvnc-7.1-33.3.ppc.rpm 2dd0ac059f850919219f05f7a26dbbf1 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-libX11-7.2-15.ppc.rpm 125f5130a49ec611c457221fb7565176 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-libs-7.2-21.ppc.rpm 14e0e29390a097d158ce5fe2cfbe5afd ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-server-7.2-30.6.ppc.rpm 213df9034f5bbaef13bc5d0c901ba3ec SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-Xnest-6.9.0-50.32.5.ppc.rpm 415790c7a0a4aa40e6408f1c27821dc4 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-Xprt-6.9.0-50.32.5.ppc.rpm 7fabe65e827fb30a429b56a138351bbf ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-Xvfb-6.9.0-50.32.5.ppc.rpm 41eae3160142eb46385dbe5baf89c408 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-Xvnc-6.9.0-50.32.5.ppc.rpm c8116ab4d95c2fdff2ec4da37e601799 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-libs-6.9.0-50.32.5.ppc.rpm b4461725823fa145077cc0413d1da591 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-server-6.9.0-50.32.5.ppc.rpm 31035241df2327b3e5a51c6c160f2274 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xorg-x11-Xnest-6.8.2-100.12.ppc.rpm 569448ec158732114dea533ca251d8d0 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xorg-x11-Xprt-6.8.2-100.12.ppc.rpm 00c7188efcf7910ba9e4eb3f5a530b83 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xorg-x11-Xvfb-6.8.2-100.12.ppc.rpm b8dc14d51b4f1f5826fd2b9c38c9b95a ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xorg-x11-Xvnc-6.8.2-100.12.ppc.rpm 51773cd8ec74d6dcf940421198185caa ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xorg-x11-libs-6.8.2-100.12.ppc.rpm f4aec18ae21bdd197bcd9ca747fff6af ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xorg-x11-server-6.8.2-100.12.ppc.rpm 01d581f8a368bb1851bc9dce18e17e74 x86-64 Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-Xvnc-7.1-33.3.x86_64.rpm d5279a52559dad95051d35152299bca0 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-libX11-32bit-7.2-15.x86_64.rpm 1a8a0d3686577c2659489f9db15fc33a ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-libX11-7.2-15.x86_64.rpm f67e112ae3a9a86738fb24c18a37f923 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-libs-32bit-7.2-21.x86_64.rpm 56a914585e7c13a4dbbff4442e1d1b68 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-libs-7.2-21.x86_64.rpm deb38a3c779aa555eaf2945d481fbb71 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-server-7.2-30.6.x86_64.rpm 92cf365d5c7a8fe64f597f6c905029cb SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-Xnest-6.9.0-50.32.5.x86_64.rpm de5abacece46c45c2638560186856d20 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-Xprt-6.9.0-50.32.5.x86_64.rpm 5467552ff02f20f0cd853b117b78d973 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-Xvfb-6.9.0-50.32.5.x86_64.rpm 618d2dcaaa6ddc4b42af897cc5fda760 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-Xvnc-6.9.0-50.32.5.x86_64.rpm 3ac80b6b207d816ebce3a5ed28f3680c ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-libs-32bit-6.9.0-50.32.5.x86_64.rpm e30fba61063b8db8356372a95eb2d75b ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-libs-6.9.0-50.32.5.x86_64.rpm bb58d46daab8f11f7ab956c696b19f40 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-server-6.9.0-50.32.5.x86_64.rpm 4ad6d5a0e3b1da87b4875870294a668e SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-Xnest-6.8.2-100.12.x86_64.rpm 152bf582064aedb118ba39608694af90 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-Xprt-6.8.2-100.12.x86_64.rpm 64f5d9e1e1a8fa1c6bdea1f7f2c567b8 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-Xvfb-6.8.2-100.12.x86_64.rpm a6ae6668b4a4cbf4aa43148494f5ecea ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-Xvnc-6.8.2-100.12.x86_64.rpm b2b4869419f0e9a454b866d14105094b ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-libs-32bit-6.8.2-100.12.x86_64.rpm e5c1529ea2ebaaf60b05217264da6bea ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-libs-6.8.2-100.12.x86_64.rpm ad624932ecc4dbf72027de821c7f3924 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/xorg-x11-server-6.8.2-100.12.x86_64.rpm bbe45bab4874a15923e17bb9e33381ee SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-Xnest-6.8.2-30.12.x86_64.rpm fb82e0eaff5175dff0b2aef08db85b7b ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-Xprt-6.8.2-30.12.x86_64.rpm 54adc63d83c7c35b0f93eab346cc5022 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-Xvfb-6.8.2-30.12.x86_64.rpm c451aba3b6f8bb0fd3a9fb3c47e7f9dd ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-Xvnc-6.8.2-30.12.x86_64.rpm 215572fb3d47192393536977bddcf11f ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-libs-32bit-9.3-7.3.x86_64.rpm 06c442986173694140ca4f8fa07c971c ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-libs-6.8.2-30.12.x86_64.rpm 96617ce6e2bce28d30bc3e1609f2cd1d ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xorg-x11-server-6.8.2-30.12.x86_64.rpm 4bbae390f12493c1d49a463f99849b68 Sources: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/xorg-x11-Xvnc-7.1-33.3.src.rpm ce37a23d3e6647f0af0b3e11e5b45c70 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/xorg-x11-libX11-7.2-15.src.rpm 09035566ccd0ccd3245e00b8a9b20762 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/xorg-x11-libs-7.2-21.src.rpm 632b8e481383561cea9688228dd3e2b4 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/xorg-x11-server-7.2-30.6.src.rpm 8333f36d72e191828c30c445ac3a081d UnitedLinux 1.0 http://support.novell.com/techcenter/psdb/d01bb675582b3827d7dea897df29019c.html SuSE Linux Openexchange Server 4 http://support.novell.com/techcenter/psdb/d01bb675582b3827d7dea897df29019c.html SuSE Linux Enterprise Server 8 http://support.novell.com/techcenter/psdb/d01bb675582b3827d7dea897df29019c.html SuSE Linux Standard Server 8 http://support.novell.com/techcenter/psdb/d01bb675582b3827d7dea897df29019c.html SuSE Linux School Server http://support.novell.com/techcenter/psdb/d01bb675582b3827d7dea897df29019c.html SUSE LINUX Retail Solution 8 http://support.novell.com/techcenter/psdb/d01bb675582b3827d7dea897df29019c.html Open Enterprise Server http://support.novell.com/techcenter/psdb/d02caf41ef1474e8a88dc11ae5b1e0ef.html Novell Linux POS 9 http://support.novell.com/techcenter/psdb/d02caf41ef1474e8a88dc11ae5b1e0ef.html Novell Linux Desktop 9 http://support.novell.com/techcenter/psdb/d02caf41ef1474e8a88dc11ae5b1e0ef.html SuSE Linux Desktop 1.0 http://support.novell.com/techcenter/psdb/d02caf41ef1474e8a88dc11ae5b1e0ef.html SUSE SLES 9 http://support.novell.com/techcenter/psdb/d02caf41ef1474e8a88dc11ae5b1e0ef.html SUSE SLES 10 http://support.novell.com/techcenter/psdb/8476a77bfebd56f3cd855c67d62ee674.html SLE SDK 10 http://support.novell.com/techcenter/psdb/8476a77bfebd56f3cd855c67d62ee674.html SUSE SLED 10 http://support.novell.com/techcenter/psdb/8476a77bfebd56f3cd855c67d62ee674.html ORIGINAL ADVISORY: http://www.novell.com/linux/security/advisories/2007_27_x.html OTHER REFERENCES: SA24741: http://secunia.com/advisories/24741/ SA24758: http://secunia.com/advisories/24758/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------