---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Download and test it today: https://psi.secunia.com/ Read more about this new version: https://psi.secunia.com/?page=changelog ---------------------------------------------------------------------- TITLE: SUSE update for Xorg and XFree SECUNIA ADVISORY ID: SA28540 VERIFY ADVISORY: http://secunia.com/advisories/28540/ CRITICAL: Less critical IMPACT: Exposure of sensitive information, Privilege escalation, DoS WHERE: Local system OPERATING SYSTEM: SUSE Linux 10.1 http://secunia.com/product/10796/ openSUSE 10.2 http://secunia.com/product/13375/ openSUSE 10.3 http://secunia.com/product/16124/ SuSE Linux Enterprise Server 8 http://secunia.com/product/1171/ SUSE Linux Enterprise Server 9 http://secunia.com/product/4118/ SUSE Linux Enterprise Server 10 http://secunia.com/product/12192/ DESCRIPTION: SUSE has issued an update for Xorg and XFree. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or gain escalated privileges. For more information: SA28532 SOLUTION: Apply updated packages. x86 Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/xorg-x11-devel-7.2-103.4.i586.rpm 4bbe5643ab5197a9cc685e4223190447 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/xorg-x11-libs-7.2-103.4.i586.rpm 4cce05a6c93d4bf6a862fb5a69bccb8b http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/xorg-x11-server-7.2-143.9.i586.rpm 4a01021996233c6e2ff490fad5aec03e http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/xorg-x11-server-extra-7.2-143.9.i586.rpm 97836a761ae467f19d94d1b91ea9b995 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/xorg-x11-server-sdk-7.2-143.9.i586.rpm 5ff972aaa94b837d8d62317c6bacc88d openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-devel-7.2-25.i586.rpm a3246ccdce33d8110f342bdbb2585310 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-libs-7.2-25.i586.rpm d60e0060e406b75e3ac71210ab8ff0fa ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-server-7.2-30.11.i586.rpm 92d31c20ae082e9188aecd45a9a6d03e ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/xorg-x11-server-sdk-7.2-30.11.i586.rpm a4d4d9255140056e46cb38d0e2d3c6d6 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-Xnest-6.9.0-50.54.5.i586.rpm c9938a12824aeb3fd74d49d26ce20b77 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-Xvfb-6.9.0-50.54.5.i586.rpm 312edac7fcafa8c418f183d8a18c36eb ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-devel-6.9.0-50.54.5.i586.rpm 10bbd9107fdaf0dd5279044161d20a0b ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-libs-6.9.0-50.54.5.i586.rpm a91dabea7a3c491e2388b3b246be06c2 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/xorg-x11-server-6.9.0-50.54.5.i586.rpm 064c1a03036ad7679def77653acde9df Power PC Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/xorg-x11-devel-7.2-103.4.ppc.rpm 6fdb46c5be13610d18c1cb0b301d4d12 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/xorg-x11-libs-7.2-103.4.ppc.rpm 617dade18d68a52f3b58d38b59031415 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/xorg-x11-server-7.2-143.9.ppc.rpm f3cfb22666dd58a26af56354250e6636 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/xorg-x11-server-extra-7.2-143.9.ppc.rpm b9f0fec937301505361978b745f40ad7 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/xorg-x11-server-sdk-7.2-143.9.ppc.rpm e0ca4a975175a9e13b99a33e79545ad2 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-devel-7.2-25.ppc.rpm 80e857e61d1f1a7b540127ffcfdca0ee ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-libs-7.2-25.ppc.rpm b4991e6eb90fcea9afc83ee1831b8986 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-server-7.2-30.11.ppc.rpm 879a225b74608634cda54139aaf6a0ae ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/xorg-x11-server-sdk-7.2-30.11.ppc.rpm f1e0439b2acfe584d008491d1fa390a2 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-Xnest-6.9.0-50.54.5.ppc.rpm e5012a1fdff71ced7a53827f05d0727a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-Xvfb-6.9.0-50.54.5.ppc.rpm 33873e20b3f5918eb36908f3a1f5d07a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-devel-6.9.0-50.54.5.ppc.rpm 2f1dcc7e26c4a9fbde3edd89bc994238 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-libs-6.9.0-50.54.5.ppc.rpm 14fcd28cd5078d76ae67a1db33ca45bc ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/xorg-x11-server-6.9.0-50.54.5.ppc.rpm 8ca0ddaac627503f029f72d7671273b2 x86-64 Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-devel-32bit-7.2-103.4.x86_64.rpm d5452701eb0d6f9ef91d1c2264e5c716 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-devel-7.2-103.4.x86_64.rpm e19652d7217db93081f303a3131cf845 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-libs-32bit-7.2-103.4.x86_64.rpm e814f811a5ad43cc3abcde619c2779d4 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-libs-7.2-103.4.x86_64.rpm 599758d0f90e6b4c0527206daa776866 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-server-7.2-143.9.x86_64.rpm 0a9224a7eabef9caa9b37b54b8caf05c http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-server-extra-7.2-143.9.x86_64.rpm 9a533681e8d32525b1a92e678ca32d73 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/xorg-x11-server-sdk-7.2-143.9.x86_64.rpm a4b50a22158bafd13104472abde095d0 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-devel-32bit-7.2-25.x86_64.rpm 58024c63be1540f240bc6100697f5b9a ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-devel-7.2-25.x86_64.rpm 19a58ca74eb67a143de3fe352aee062f ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-libs-32bit-7.2-25.x86_64.rpm c2e37d9cc52e979bf73e8a4f34884b1f ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-libs-7.2-25.x86_64.rpm e8af19e6ad8b263e8040fa58d5099e35 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-server-7.2-30.11.x86_64.rpm 14a34bc8259984d3fdd5748117260b0b ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/xorg-x11-server-sdk-7.2-30.11.x86_64.rpm 58aa334590da306353375b1830a717ee SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-Xnest-6.9.0-50.54.5.x86_64.rpm 52853afb62f85a7a99978b9467d68844 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-Xvfb-6.9.0-50.54.5.x86_64.rpm d69e56bc7042e92e484580068585e7d5 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-devel-32bit-6.9.0-50.54.5.x86_64.rpm ed7645afff6fee4b0c51ec89038c39da ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-devel-6.9.0-50.54.5.x86_64.rpm ba857d6ca557ea04e744f4257b22380e ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-libs-32bit-6.9.0-50.54.5.x86_64.rpm 26d99f7fd46c3b2d2b622d3b87db7325 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-libs-6.9.0-50.54.5.x86_64.rpm 9d5215fad591bca1fd4d9348ded346f8 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/xorg-x11-server-6.9.0-50.54.5.x86_64.rpm 4afae475777e64990502d839de5b1eb1 Sources: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/xorg-x11-libs-7.2-103.4.src.rpm de839a08105c51acc7887426bde824b2 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/xorg-x11-server-7.2-143.9.src.rpm 6d1776ab401f80cc697a8c6e2857df26 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/xorg-x11-libs-7.2-25.src.rpm d615319400643142258e964b02409cfe ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/xorg-x11-server-7.2-30.11.src.rpm 8d0e28dd0d5b02b0d473284fccae86a9 SuSE Linux Enterprise Server 8 http://support.novell.com/techcenter/psdb/2e67073ec1e81f99bc3f1b5ee47766a2.html SLE SDK 10 SP1 http://support.novell.com/techcenter/psdb/18a56e9d8d46b54d240bd74f97e7a881.html SUSE Linux Enterprise Server 10 SP1 for IBM zSeries 64bit http://support.novell.com/techcenter/psdb/677761c3a6779efbab4567360d1ec13c.html SUSE Linux Enterprise Server 10 SP1 http://support.novell.com/techcenter/psdb/18a56e9d8d46b54d240bd74f97e7a881.html http://support.novell.com/techcenter/psdb/677761c3a6779efbab4567360d1ec13c.html http://support.novell.com/techcenter/psdb/e4b2229c714a9c6fb576185356d86fc8.html SUSE Linux Enterprise Desktop 10 SP1 http://support.novell.com/techcenter/psdb/18a56e9d8d46b54d240bd74f97e7a881.html http://support.novell.com/techcenter/psdb/e4b2229c714a9c6fb576185356d86fc8.html Open Enterprise Server http://support.novell.com/techcenter/psdb/686ed843d1dc7672badd026d1d0712c1.html http://support.novell.com/techcenter/psdb/56240f6955337ddf455d2aa23797006a.html Novell Linux POS 9 http://support.novell.com/techcenter/psdb/686ed843d1dc7672badd026d1d0712c1.html http://support.novell.com/techcenter/psdb/56240f6955337ddf455d2aa23797006a.html Novell Linux Desktop 9 http://support.novell.com/techcenter/psdb/686ed843d1dc7672badd026d1d0712c1.html http://support.novell.com/techcenter/psdb/56240f6955337ddf455d2aa23797006a.html SUSE SLES 9 http://support.novell.com/techcenter/psdb/ce66af7045437b3b5756995a1909aa37.html http://support.novell.com/techcenter/psdb/686ed843d1dc7672badd026d1d0712c1.html http://support.novell.com/techcenter/psdb/56240f6955337ddf455d2aa23797006a.html SuSE Linux Enterprise Server 8 for x86 http://support.novell.com/techcenter/psdb/ae0d150efd69d29b38dbf2dce673c9b1.html ORIGINAL ADVISORY: http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00004.html OTHER REFERENCES: SA28532: http://secunia.com/advisories/28532/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------