Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
xorg-x11
(Unknown)
Описание
Целочисленное переполнение в функции AllocateGlyph в расширении Render в X server в X.Org позволяет злоумышленникам выполнить произвольный код, используя некоторые поля запросов, которые используются для вычисления размера буфера, что приводит к переполнению буфера в динамической памяти.
Как исправить
Для устранения уязвимости необходимо установить последнюю версию продукта, соответствующую используемой платформе. Необходимую информацию можно получить по адресу:
http://www.x.org/wiki/
http://www.x.org/wiki/
Ссылки
VUPEN (ADV-2008-1803): http://www.frsirt.com/english/advisories/2008/1803
DEBIAN (DSA-1595): http://www.debian.org/security/2008/dsa-1595
REDHAT (RHSA-2008:0512): http://rhn.redhat.com/errata/RHSA-2008-0512.html
REDHAT (RHSA-2008:0504): http://rhn.redhat.com/errata/RHSA-2008-0504.html
REDHAT (RHSA-2008:0502): http://rhn.redhat.com/errata/RHSA-2008-0502.html
SUSE (SUSE-SA:2008:027): http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00002.html
MLIST ([xorg] 20080611 X.Org security advisory june 2008 - Multiple vulnerabilities in X server extensions): http://lists.freedesktop.org/archives/xorg/2008-June/036026.html
CONFIRM (ftp://ftp.freedesktop.org/pub/xorg/X11R7.3/patches/xorg-xserver-1.4-cve-2008-2360.diff): ftp://ftp.freedesktop.org/pub/xorg/X11R7.3/patches/xorg-xserver-1.4-cve-2008-2360.diff
CONFIRM (https://issues.rpath.com/browse/RPL-2619): https://issues.rpath.com/browse/RPL-2619
CONFIRM (https://issues.rpath.com/browse/RPL-2607): https://issues.rpath.com/browse/RPL-2607
UBUNTU (USN-616-1): http://www.ubuntu.com/usn/usn-616-1
BUGTRAQ (20080621 rPSA-2008-0201-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs): http://www.securityfocus.com/archive/1/archive/1/493550/100/0/threaded
BUGTRAQ (20080620 rPSA-2008-0200-1 xorg-server): http://www.securityfocus.com/archive/1/archive/1/493548/100/0/threaded
REDHAT (RHSA-2008:0503): http://www.redhat.com/support/errata/RHSA-2008-0503.html
MANDRIVA (MDVSA-2008:179): http://www.mandriva.com/security/advisories?name=MDVSA-2008:179
MANDRIVA (MDVSA-2008:116): http://www.mandriva.com/security/advisories?name=MDVSA-2008:116
MANDRIVA (MDVSA-2008:115): http://www.mandriva.com/security/advisories?name=MDVSA-2008:115
GENTOO (GLSA-200807-07): http://www.gentoo.org/security/en/glsa/glsa-200807-07.xml
VUPEN (ADV-2008-1983): http://www.frsirt.com/english/advisories/2008/1983/references
VUPEN (ADV-2008-1833): http://www.frsirt.com/english/advisories/2008/1833
CONFIRM (http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0201): http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0201
CONFIRM (http://support.avaya.com/elmodocs2/security/ASA-2008-249.htm): http://support.avaya.com/elmodocs2/security/ASA-2008-249.htm
CONFIRM (http://support.apple.com/kb/HT3438): http://support.apple.com/kb/HT3438
SUNALERT (238686): http://sunsolve.sun.com/search/document.do?assetkey=1-26-238686-1
SECTRACK (1020243): http://securitytracker.com/id?1020243
GENTOO (GLSA-200806-07): http://security.gentoo.org/glsa/glsa-200806-07.xml
SUSE (SUSE-SR:2008:019): http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00005.html
APPLE (APPLE-SA-2009-02-12): http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
IDEFENSE (20080611 Multiple Vendor X Server Render Extension AllocateGlyph() Integer Overflow Vulnerability): http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=718
DEBIAN (DSA-1595): http://www.debian.org/security/2008/dsa-1595
REDHAT (RHSA-2008:0512): http://rhn.redhat.com/errata/RHSA-2008-0512.html
REDHAT (RHSA-2008:0504): http://rhn.redhat.com/errata/RHSA-2008-0504.html
REDHAT (RHSA-2008:0502): http://rhn.redhat.com/errata/RHSA-2008-0502.html
SUSE (SUSE-SA:2008:027): http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00002.html
MLIST ([xorg] 20080611 X.Org security advisory june 2008 - Multiple vulnerabilities in X server extensions): http://lists.freedesktop.org/archives/xorg/2008-June/036026.html
CONFIRM (ftp://ftp.freedesktop.org/pub/xorg/X11R7.3/patches/xorg-xserver-1.4-cve-2008-2360.diff): ftp://ftp.freedesktop.org/pub/xorg/X11R7.3/patches/xorg-xserver-1.4-cve-2008-2360.diff
CONFIRM (https://issues.rpath.com/browse/RPL-2619): https://issues.rpath.com/browse/RPL-2619
CONFIRM (https://issues.rpath.com/browse/RPL-2607): https://issues.rpath.com/browse/RPL-2607
UBUNTU (USN-616-1): http://www.ubuntu.com/usn/usn-616-1
BUGTRAQ (20080621 rPSA-2008-0201-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs): http://www.securityfocus.com/archive/1/archive/1/493550/100/0/threaded
BUGTRAQ (20080620 rPSA-2008-0200-1 xorg-server): http://www.securityfocus.com/archive/1/archive/1/493548/100/0/threaded
REDHAT (RHSA-2008:0503): http://www.redhat.com/support/errata/RHSA-2008-0503.html
MANDRIVA (MDVSA-2008:179): http://www.mandriva.com/security/advisories?name=MDVSA-2008:179
MANDRIVA (MDVSA-2008:116): http://www.mandriva.com/security/advisories?name=MDVSA-2008:116
MANDRIVA (MDVSA-2008:115): http://www.mandriva.com/security/advisories?name=MDVSA-2008:115
GENTOO (GLSA-200807-07): http://www.gentoo.org/security/en/glsa/glsa-200807-07.xml
VUPEN (ADV-2008-1983): http://www.frsirt.com/english/advisories/2008/1983/references
VUPEN (ADV-2008-1833): http://www.frsirt.com/english/advisories/2008/1833
CONFIRM (http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0201): http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0201
CONFIRM (http://support.avaya.com/elmodocs2/security/ASA-2008-249.htm): http://support.avaya.com/elmodocs2/security/ASA-2008-249.htm
CONFIRM (http://support.apple.com/kb/HT3438): http://support.apple.com/kb/HT3438
SUNALERT (238686): http://sunsolve.sun.com/search/document.do?assetkey=1-26-238686-1
SECTRACK (1020243): http://securitytracker.com/id?1020243
GENTOO (GLSA-200806-07): http://security.gentoo.org/glsa/glsa-200806-07.xml
SUSE (SUSE-SR:2008:019): http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00005.html
APPLE (APPLE-SA-2009-02-12): http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
IDEFENSE (20080611 Multiple Vendor X Server Render Extension AllocateGlyph() Integer Overflow Vulnerability): http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=718