aru Posted September 12, 2003 Report Share Posted September 12, 2003 MandrakeSoft Security Advisory MDKSA-2003:089 : XFree86 September 11th, 2003 Updated XFree86 packages fix multiple vulnerabilities Several vulnerabilities were discovered by blexim(at)hush.com in the font libraries of XFree86 version 4.3.0 and earlier. These bugs could potentially lead to execution of arbitrary code or a DoS by a remote user in any way that calls these functions, which are related to the transfer and enumeration of fonts from font servers to clients. As well, some bugs were fixed in XFree86 as released with Mandrake Linux 9.2, specifically a problem where X would freeze with a black screen at logout or shutdown with DRI enabled on certain ATI Radeon cards. The released versions of Mandrake GNU/Linux affected are: 9.0 [*] 9.1 [*] Corporate Server 2.1 Full information about this advisory, including the updated packages, is available at: www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:089 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0730 http://marc.theaimsgroup.com/?l=bugtraq&m=...29335312429&w=2 Posted automatically by aru (mdksec2mub v0.0.6) Link to comment Share on other sites More sharing options...
Recommended Posts