-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:081 http://www.mandriva.com/security/ _______________________________________________________________________ Package : xorg-x11 Date : May 2, 2006 Affected: 10.2, 2006.0 _______________________________________________________________________ Problem Description: A problem was discovered in xorg-x11 where the X render extension would mis-calculate the size of a buffer, leading to an overflow that could possibly be exploited by clients of the X server. The updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1526 _______________________________________________________________________ Updated Packages: Mandriva Linux 10.2: a2b8586e98837e2e1944c76fb57b9ab1 10.2/RPMS/libxorg-x11-6.8.2-7.3.102mdk.i586.rpm c40829d9ea0cfb5837019be1226c10be 10.2/RPMS/libxorg-x11-devel-6.8.2-7.3.102mdk.i586.rpm 1037572baf36062f474fc18d8ef3c479 10.2/RPMS/libxorg-x11-static-devel-6.8.2-7.3.102mdk.i586.rpm 04becfb293020cc4ff315a2ee0ebf32e 10.2/RPMS/X11R6-contrib-6.8.2-7.3.102mdk.i586.rpm 83ecbd5538b58e2e7b4b7ab1a275f232 10.2/RPMS/xorg-x11-100dpi-fonts-6.8.2-7.3.102mdk.i586.rpm 9a7d14442752f3bd569d238305e6b4c5 10.2/RPMS/xorg-x11-6.8.2-7.3.102mdk.i586.rpm f59d28b4ccb04597bcffaefd61beddab 10.2/RPMS/xorg-x11-75dpi-fonts-6.8.2-7.3.102mdk.i586.rpm e45d5e613005a56c083693ec06a0f42f 10.2/RPMS/xorg-x11-cyrillic-fonts-6.8.2-7.3.102mdk.i586.rpm 32f4a41dfb1160a15f00c79f6844497d 10.2/RPMS/xorg-x11-doc-6.8.2-7.3.102mdk.i586.rpm 2081fc6014b96ed43e2c7f3eff340598 10.2/RPMS/xorg-x11-glide-module-6.8.2-7.3.102mdk.i586.rpm 683ccfd056709341173fcfaca26d6093 10.2/RPMS/xorg-x11-server-6.8.2-7.3.102mdk.i586.rpm c43fdd380205248d49dd178239b330d8 10.2/RPMS/xorg-x11-xauth-6.8.2-7.3.102mdk.i586.rpm dd775264950082d89cdc54dcff3cd665 10.2/RPMS/xorg-x11-Xdmx-6.8.2-7.3.102mdk.i586.rpm 950dfe1df58de30e7a8978679365cf84 10.2/RPMS/xorg-x11-xfs-6.8.2-7.3.102mdk.i586.rpm ec3b5a7752b7a3ebf6512410582d9307 10.2/RPMS/xorg-x11-Xnest-6.8.2-7.3.102mdk.i586.rpm 36d85f3ec61acf906794f460964e81ef 10.2/RPMS/xorg-x11-Xprt-6.8.2-7.3.102mdk.i586.rpm 35d88a1d859606994dcf419b5368a4ab 10.2/RPMS/xorg-x11-Xvfb-6.8.2-7.3.102mdk.i586.rpm 9186fc96840016fc20e734fc7011db41 10.2/SRPMS/xorg-x11-6.8.2-7.3.102mdk.src.rpm Mandriva Linux 10.2/X86_64: a780d4e331064a187377d4640d6c3f17 x86_64/10.2/RPMS/lib64xorg-x11-6.8.2-7.3.102mdk.x86_64.rpm 4a39ecfa5c3689418752402c38fa4cbf x86_64/10.2/RPMS/lib64xorg-x11-devel-6.8.2-7.3.102mdk.x86_64.rpm 7dc493ee280124d65485c371bde6d768 x86_64/10.2/RPMS/lib64xorg-x11-static-devel-6.8.2-7.3.102mdk.x86_64.rpm a2b8586e98837e2e1944c76fb57b9ab1 x86_64/10.2/RPMS/libxorg-x11-6.8.2-7.3.102mdk.i586.rpm c40829d9ea0cfb5837019be1226c10be x86_64/10.2/RPMS/libxorg-x11-devel-6.8.2-7.3.102mdk.i586.rpm 1037572baf36062f474fc18d8ef3c479 x86_64/10.2/RPMS/libxorg-x11-static-devel-6.8.2-7.3.102mdk.i586.rpm e6a02cb2c3c4d9d80d47a2bf897a5eaa x86_64/10.2/RPMS/X11R6-contrib-6.8.2-7.3.102mdk.x86_64.rpm a6b0f7a3f8fbc35be6b94d351d8d7504 x86_64/10.2/RPMS/xorg-x11-100dpi-fonts-6.8.2-7.3.102mdk.x86_64.rpm ba547a06e55cdd70665e1f6fa16a9f21 x86_64/10.2/RPMS/xorg-x11-6.8.2-7.3.102mdk.x86_64.rpm 69025794bb59e71f19e13b2f84c9e002 x86_64/10.2/RPMS/xorg-x11-75dpi-fonts-6.8.2-7.3.102mdk.x86_64.rpm 6aa05b3fad46e506f6c0cc5a5d6b16bd x86_64/10.2/RPMS/xorg-x11-cyrillic-fonts-6.8.2-7.3.102mdk.x86_64.rpm 47789a545c49c17eb831c01784b217ec x86_64/10.2/RPMS/xorg-x11-doc-6.8.2-7.3.102mdk.x86_64.rpm a2d447afd9360b7fc09450da3523b552 x86_64/10.2/RPMS/xorg-x11-server-6.8.2-7.3.102mdk.x86_64.rpm c0661878d727b5c2f0cfe689748923e2 x86_64/10.2/RPMS/xorg-x11-xauth-6.8.2-7.3.102mdk.x86_64.rpm 7d0b9c84fb5b83909e1dc59e8b7ee5e2 x86_64/10.2/RPMS/xorg-x11-Xdmx-6.8.2-7.3.102mdk.x86_64.rpm 60f4063de8adafcf691ef0d4627dac95 x86_64/10.2/RPMS/xorg-x11-xfs-6.8.2-7.3.102mdk.x86_64.rpm 30612f88bb7a2a2c97a625006b8b7f8f x86_64/10.2/RPMS/xorg-x11-Xnest-6.8.2-7.3.102mdk.x86_64.rpm 6a3a87b3cf7f7a319e3d4718e157a9e8 x86_64/10.2/RPMS/xorg-x11-Xprt-6.8.2-7.3.102mdk.x86_64.rpm ee2d660c48449e901d51d24fa220919d x86_64/10.2/RPMS/xorg-x11-Xvfb-6.8.2-7.3.102mdk.x86_64.rpm 9186fc96840016fc20e734fc7011db41 x86_64/10.2/SRPMS/xorg-x11-6.8.2-7.3.102mdk.src.rpm Mandriva Linux 2006.0: 1f422d4db438f8af71d37be16aa31dd8 2006.0/RPMS/libxorg-x11-6.9.0-5.5.20060mdk.i586.rpm 567fe8719887e0018da7c0c931b006be 2006.0/RPMS/libxorg-x11-devel-6.9.0-5.5.20060mdk.i586.rpm bc6948084d15e2db685570435e6c578f 2006.0/RPMS/libxorg-x11-static-devel-6.9.0-5.5.20060mdk.i586.rpm b0caee00bf81ead022e6ba43e936b3e4 2006.0/RPMS/X11R6-contrib-6.9.0-5.5.20060mdk.i586.rpm bf84187d9c8c1359addc677d06f75bb0 2006.0/RPMS/xorg-x11-100dpi-fonts-6.9.0-5.5.20060mdk.i586.rpm a8894744dec0a8141a525689911dc2ed 2006.0/RPMS/xorg-x11-6.9.0-5.5.20060mdk.i586.rpm 6ae694eb99ce727d4de310da9b52792e 2006.0/RPMS/xorg-x11-75dpi-fonts-6.9.0-5.5.20060mdk.i586.rpm 3972988a2e0575da6ed11f6f9941ef70 2006.0/RPMS/xorg-x11-cyrillic-fonts-6.9.0-5.5.20060mdk.i586.rpm 8c6bf7c477a4603425f4dda1b16e2dc8 2006.0/RPMS/xorg-x11-doc-6.9.0-5.5.20060mdk.i586.rpm 1ae0cd43a6e86cd2e2880c2efc3b2425 2006.0/RPMS/xorg-x11-glide-module-6.9.0-5.5.20060mdk.i586.rpm f105a31d5bffc0bc9542309a6f74d3e7 2006.0/RPMS/xorg-x11-server-6.9.0-5.5.20060mdk.i586.rpm 7f74a7dc4beaa4805ef9ac2383c27e98 2006.0/RPMS/xorg-x11-xauth-6.9.0-5.5.20060mdk.i586.rpm efc90de7405cef98c7eaea966beb4aae 2006.0/RPMS/xorg-x11-Xdmx-6.9.0-5.5.20060mdk.i586.rpm ddee5ef185307f2791ea92696784c87a 2006.0/RPMS/xorg-x11-xfs-6.9.0-5.5.20060mdk.i586.rpm 0741c8b6834f7a48d955894b4d0b92e2 2006.0/RPMS/xorg-x11-Xnest-6.9.0-5.5.20060mdk.i586.rpm 6e6defaf5940866929820b52d6de7711 2006.0/RPMS/xorg-x11-Xprt-6.9.0-5.5.20060mdk.i586.rpm ccc8c50d51b3e7a51aeeb6808b9ba155 2006.0/RPMS/xorg-x11-Xvfb-6.9.0-5.5.20060mdk.i586.rpm 5b61c9d922940a39907dc210b866d9b6 2006.0/SRPMS/xorg-x11-6.9.0-5.5.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: 7af0c66f8ea216d5425754079a55160d x86_64/2006.0/RPMS/lib64xorg-x11-6.9.0-5.5.20060mdk.x86_64.rpm acbb8ca5144ff18f0771e2cca2a7285d x86_64/2006.0/RPMS/lib64xorg-x11-devel-6.9.0-5.5.20060mdk.x86_64.rpm 9b66265d4e68509cfe6ab1a1c47da1a0 x86_64/2006.0/RPMS/lib64xorg-x11-static-devel-6.9.0-5.5.20060mdk.x86_64.rpm 1f422d4db438f8af71d37be16aa31dd8 x86_64/2006.0/RPMS/libxorg-x11-6.9.0-5.5.20060mdk.i586.rpm 567fe8719887e0018da7c0c931b006be x86_64/2006.0/RPMS/libxorg-x11-devel-6.9.0-5.5.20060mdk.i586.rpm bc6948084d15e2db685570435e6c578f x86_64/2006.0/RPMS/libxorg-x11-static-devel-6.9.0-5.5.20060mdk.i586.rpm 6bae0bca551ee54302f7b02da07bf15f x86_64/2006.0/RPMS/X11R6-contrib-6.9.0-5.5.20060mdk.x86_64.rpm b2b420a89f9347ca74124f0abe57c522 x86_64/2006.0/RPMS/xorg-x11-100dpi-fonts-6.9.0-5.5.20060mdk.x86_64.rpm f375d21d32bf2d07a94abbfedaac570c x86_64/2006.0/RPMS/xorg-x11-6.9.0-5.5.20060mdk.x86_64.rpm 124ac772e205af0a172cfa8504cf3eb5 x86_64/2006.0/RPMS/xorg-x11-75dpi-fonts-6.9.0-5.5.20060mdk.x86_64.rpm 90a65f969a8857564f0f633613b52af3 x86_64/2006.0/RPMS/xorg-x11-cyrillic-fonts-6.9.0-5.5.20060mdk.x86_64.rpm 61b0387372dc4ed0426037949f02a5d8 x86_64/2006.0/RPMS/xorg-x11-doc-6.9.0-5.5.20060mdk.x86_64.rpm 803854e97100d7f256d9f0b0d701f71d x86_64/2006.0/RPMS/xorg-x11-glide-module-6.9.0-5.5.20060mdk.x86_64.rpm dc55e788b02ddb008b4e8da1c3fc1f21 x86_64/2006.0/RPMS/xorg-x11-server-6.9.0-5.5.20060mdk.x86_64.rpm ad63a44856bb360fffff35774c738bfb x86_64/2006.0/RPMS/xorg-x11-xauth-6.9.0-5.5.20060mdk.x86_64.rpm d0961ffa49b85cbbfc297e321c1bccbb x86_64/2006.0/RPMS/xorg-x11-Xdmx-6.9.0-5.5.20060mdk.x86_64.rpm 47ede4df893f6ee7ad53011d51f633fa x86_64/2006.0/RPMS/xorg-x11-xfs-6.9.0-5.5.20060mdk.x86_64.rpm 5d971c554acd6dccaaa6804c7b21c295 x86_64/2006.0/RPMS/xorg-x11-Xnest-6.9.0-5.5.20060mdk.x86_64.rpm e63a6853f525479bd08489cf4bfef4a0 x86_64/2006.0/RPMS/xorg-x11-Xprt-6.9.0-5.5.20060mdk.x86_64.rpm 2f93fa75efd11814b9c4b40838e1ae6b x86_64/2006.0/RPMS/xorg-x11-Xvfb-6.9.0-5.5.20060mdk.x86_64.rpm 5b61c9d922940a39907dc210b866d9b6 x86_64/2006.0/SRPMS/xorg-x11-6.9.0-5.5.20060mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD4DBQFEV8xZmqjQ0CJFipgRAuw+AJdLjmmzPdxiMrUkDhkjjjQSACGxAKCu/lZW 7X4j0MnsaU1rBijyKQ5URw== =DJZA -----END PGP SIGNATURE-----