SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   libXpm Vendors:   X.org
(Fedora Issues Fix for FC2) libXpm Memory Leaks, Overflows, and Input Validation Errors May Let Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1012278
SecurityTracker URL:  http://securitytracker.com/id/1012278
CVE Reference:   CVE-2004-0914   (Links to External Site)
Date:  Nov 19 2004
Impact:   Denial of service via local system, Denial of service via network, Execution of arbitrary code via local system, Execution of arbitrary code via network, User access via local system, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): R6.8.1 and prior versions
Description:   Several vulnerabilities were reported in libXpm. A user can create a specially crafted image file that, when processed by libXpm, may cause the application to crash or execute arbitrary code.

The vendor reported that the code contains multipel integer overflows, memory access errors, input validation errors, and logic errors. A remote user may be able to execute shell commands, traverse the directory, and cause denial of service conditions.

Petr Mladek and Thomas Biege are credited with reporting these flaws.

Impact:   A user can create an image file that, when processed by the target application, will cause denial of service conditions or execute arbitrary code on the target system. the specific impact depends on the application that uses libXpm.
Solution:   Fedora has released a fix, available at:

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

124c9981637617da46d15f7b195e9ff2 SRPMS/xorg-x11-6.7.0-10.src.rpm
fbac70a586ce7c30b6cd9b8eb7c81ddc x86_64/xorg-x11-6.7.0-10.x86_64.rpm
ef9f482aead8998f6b7a865f15a7ea26 x86_64/xorg-x11-devel-6.7.0-10.x86_64.rpm
8633a13158d102139d4bc2b3e0e2e44e x86_64/xorg-x11-font-utils-6.7.0-10.x86_64.rpm
a02215c532e9e2be4b295332a8a0f174 x86_64/xorg-x11-xfs-6.7.0-10.x86_64.rpm
c18b23c44d9d6d0aafa04b8a6c8c158a x86_64/xorg-x11-twm-6.7.0-10.x86_64.rpm
0c869d822f947bb93c0a952d852e4c6b x86_64/xorg-x11-xdm-6.7.0-10.x86_64.rpm
0d0c16933d98d794c1e535134313276b x86_64/xorg-x11-libs-6.7.0-10.x86_64.rpm
7229fee9eaf7e57292524acdf588e6ba x86_64/xorg-x11-libs-data-6.7.0-10.x86_64.rpm
cd4b7a3208195c0ec02561312c7a33c6 x86_64/xorg-x11-base-fonts-6.7.0-10.x86_64.rpm
341b394049a46eced63bde677df071bd x86_64/xorg-x11-truetype-fonts-6.7.0-10.x86_64.rpm
c22118a03a6b98130941b3b6ab181086 x86_64/xorg-x11-syriac-fonts-6.7.0-10.x86_64.rpm
30254022e237c5b0a595ed51ba82efb3 x86_64/xorg-x11-75dpi-fonts-6.7.0-10.x86_64.rpm
8d61afbe052143aadef744189c4785ba x86_64/xorg-x11-100dpi-fonts-6.7.0-10.x86_64.rpm
0d8fb9084a5d70aef72442683c17d55a x86_64/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-10.x86_64.rpm
28f2517345bd53cc6eff88205ef418cb x86_64/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-10.x86_64.rpm
5a5d620ec4046530dc4cc9761ff05a5f x86_64/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-10.x86_64.rpm
75dc21cf6d5c978c8245d7639957bc1d x86_64/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-10.x86_64.rpm
1da2604630e93685b530d4b46d47a454 x86_64/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-10.x86_64.rpm
e8922442b3ba08b20ff0aaba01b017ab x86_64/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-10.x86_64.rpm
6fcd7052e0b32fc7ad2790bebd1e71c2 x86_64/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-10.x86_64.rpm
25cd2a14ac8ad51978e46f0fe1f5551c x86_64/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-10.x86_64.rpm
8e44356861d1306cb63d4b55b6c4dd09 x86_64/xorg-x11-cyrillic-fonts-6.7.0-10.x86_64.rpm
c4087a80655762a8e9e55317efb34aed x86_64/xorg-x11-doc-6.7.0-10.x86_64.rpm
e0a4dbd0a261d31b1eb95ee0ea944a95 x86_64/xorg-x11-Xnest-6.7.0-10.x86_64.rpm
d20847c9574db571ed3a9b4c5b55d68c x86_64/xorg-x11-tools-6.7.0-10.x86_64.rpm
8b96b581a166488ab985fa9ba8d9a2a2 x86_64/xorg-x11-xauth-6.7.0-10.x86_64.rpm
f12f6861da2592627eb3bfe06e8c0df1 x86_64/xorg-x11-Mesa-libGL-6.7.0-10.x86_64.rpm
359486a9d0554885b748ef49458426ae x86_64/xorg-x11-Mesa-libGLU-6.7.0-10.x86_64.rpm
af602a72387f7dd857997e88a9a177d6 x86_64/xorg-x11-Xvfb-6.7.0-10.x86_64.rpm
1a6ebca5b2a13d3cf0ba192b68bbaf64 x86_64/xorg-x11-sdk-6.7.0-10.x86_64.rpm
dd6ffe12805f836359305895dc6cd784 x86_64/xorg-x11-libs-6.7.0-10.i386.rpm
5469b7a87f8c5a4248652ee1e9a11377 x86_64/xorg-x11-libs-data-6.7.0-10.i386.rpm
9a2ca053b04a931f575a1be1e73a45b2 x86_64/xorg-x11-Mesa-libGL-6.7.0-10.i386.rpm
7e8a6414fcf02536847f8ae45893bfd1 x86_64/xorg-x11-Mesa-libGLU-6.7.0-10.i386.rpm
bf07fd7d60eb548ce33a9af4de36ab34 i386/xorg-x11-6.7.0-10.i386.rpm
004532cb02e2ec9acab2e9682665be83 i386/xorg-x11-devel-6.7.0-10.i386.rpm
1e86294ce6c318d389f9ee7103fc3726 i386/xorg-x11-font-utils-6.7.0-10.i386.rpm
0f942a7fda7316932de880abf56d638b i386/xorg-x11-xfs-6.7.0-10.i386.rpm
7e1ce9816fafe9425a05068ace414757 i386/xorg-x11-twm-6.7.0-10.i386.rpm
74fac8be1caedc751ce7b2af6d95967c i386/xorg-x11-xdm-6.7.0-10.i386.rpm
dd6ffe12805f836359305895dc6cd784 i386/xorg-x11-libs-6.7.0-10.i386.rpm
5469b7a87f8c5a4248652ee1e9a11377 i386/xorg-x11-libs-data-6.7.0-10.i386.rpm
20c9d95897d02cb28370dd8e7851a96d i386/xorg-x11-base-fonts-6.7.0-10.i386.rpm
383ee0334a3538fba59c64ef8740a51a i386/xorg-x11-truetype-fonts-6.7.0-10.i386.rpm
719533a4e53a723e8f26934ec81ad146 i386/xorg-x11-syriac-fonts-6.7.0-10.i386.rpm
4a055faabb847ac9decb722c7367af3b i386/xorg-x11-75dpi-fonts-6.7.0-10.i386.rpm
6e27f8afd9231e185c81734cc013cc46 i386/xorg-x11-100dpi-fonts-6.7.0-10.i386.rpm
1e324d133b882faf0178151d08836a16 i386/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-10.i386.rpm
27c4d03568cda36517388a822b238a6f i386/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-10.i386.rpm
9bfd98c6c590ce47623611811065c9ac i386/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-10.i386.rpm
df1b1aa3cd36426ea068914e8161eefe i386/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-10.i386.rpm
e5184c3f401471c9f83fbca16bc11dc2 i386/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-10.i386.rpm
466d1293d1db57ef47a5fdd915798bad i386/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-10.i386.rpm
89445862d48da8207e3400182129932b i386/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-10.i386.rpm
61dd8cb3b03ae37e00a9585dd38f76eb i386/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-10.i386.rpm
ac93c1cf6345d2606f91b439e00c5eef i386/xorg-x11-cyrillic-fonts-6.7.0-10.i386.rpm
3d3ea8a3575122bd3a63d61ca3501aeb i386/xorg-x11-doc-6.7.0-10.i386.rpm
f802265b36ea9a7c5ea86f68648ae4aa i386/xorg-x11-Xnest-6.7.0-10.i386.rpm
4e3eea649d7872a069770c8130201285 i386/xorg-x11-tools-6.7.0-10.i386.rpm
c96728b5bba2d9b3d1d1c2fdb64a4c50 i386/xorg-x11-xauth-6.7.0-10.i386.rpm
9a2ca053b04a931f575a1be1e73a45b2 i386/xorg-x11-Mesa-libGL-6.7.0-10.i386.rpm
7e8a6414fcf02536847f8ae45893bfd1 i386/xorg-x11-Mesa-libGLU-6.7.0-10.i386.rpm
b64c1b9229d2bbc866321620993de1da i386/xorg-x11-Xvfb-6.7.0-10.i386.rpm
7422827cddd9b5510f44f3c765a0adf2 i386/xorg-x11-sdk-6.7.0-10.i386.rpm

Vendor URL:  x.org/ (Links to External Site)
Cause:   Access control error, Boundary error, Input validation error
Underlying OS:  Linux (Red Hat Fedora)
Underlying OS Comments:  FC2

Message History:   This archive entry is a follow-up to the message listed below.
Nov 17 2004 libXpm Memory Leaks, Overflows, and Input Validation Errors May Let Remote Users Execute Arbitrary Code



 Source Message Contents

Subject:  [SECURITY] Fedora Core 2 Update: xorg-x11-6.7.0-10


---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-433
2004-11-17
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : xorg-x11
Version     : 6.7.0
Release     : 10
Summary     : The basic fonts, programs and docs for an X workstation.
Description :
X.org X11 is an open source implementation of the X Window System.  It
provides the basic low level functionality which full fledged
graphical user interfaces (GUIs) such as GNOME and KDE are designed
upon.

---------------------------------------------------------------------
Update Information:

Several integer overflow flaws in the X.Org libXpm library used to decode
XPM (X PixMap) images have been found and addressed. An attacker could
create a carefully crafted XPM file which would cause an application to
crash or potentially execute arbitrary code if opened by a victim.  The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2004-0914 to this issue.

Users are advised to upgrade to these erratum packages, which contain
backported security patches as well as other bug fixes.
---------------------------------------------------------------------

- Added xorg-x11-6.7.0-xpm-security-fixes-CAN-2004-0914.patch to fix a
   number of Xpm issues found by Thomas Biege <thomas@suse.de>
   (#136169)

---------------------------------------------------------------------
This update can be downloaded from:
   http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

124c9981637617da46d15f7b195e9ff2  SRPMS/xorg-x11-6.7.0-10.src.rpm
fbac70a586ce7c30b6cd9b8eb7c81ddc  x86_64/xorg-x11-6.7.0-10.x86_64.rpm
ef9f482aead8998f6b7a865f15a7ea26  x86_64/xorg-x11-devel-6.7.0-10.x86_64.rpm
8633a13158d102139d4bc2b3e0e2e44e  x86_64/xorg-x11-font-utils-6.7.0-10.x86_64.rpm
a02215c532e9e2be4b295332a8a0f174  x86_64/xorg-x11-xfs-6.7.0-10.x86_64.rpm
c18b23c44d9d6d0aafa04b8a6c8c158a  x86_64/xorg-x11-twm-6.7.0-10.x86_64.rpm
0c869d822f947bb93c0a952d852e4c6b  x86_64/xorg-x11-xdm-6.7.0-10.x86_64.rpm
0d0c16933d98d794c1e535134313276b  x86_64/xorg-x11-libs-6.7.0-10.x86_64.rpm
7229fee9eaf7e57292524acdf588e6ba  x86_64/xorg-x11-libs-data-6.7.0-10.x86_64.rpm
cd4b7a3208195c0ec02561312c7a33c6  x86_64/xorg-x11-base-fonts-6.7.0-10.x86_64.rpm
341b394049a46eced63bde677df071bd  x86_64/xorg-x11-truetype-fonts-6.7.0-10.x86_64.rpm
c22118a03a6b98130941b3b6ab181086  x86_64/xorg-x11-syriac-fonts-6.7.0-10.x86_64.rpm
30254022e237c5b0a595ed51ba82efb3  x86_64/xorg-x11-75dpi-fonts-6.7.0-10.x86_64.rpm
8d61afbe052143aadef744189c4785ba  x86_64/xorg-x11-100dpi-fonts-6.7.0-10.x86_64.rpm
0d8fb9084a5d70aef72442683c17d55a  x86_64/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-10.x86_64.rpm
28f2517345bd53cc6eff88205ef418cb  x86_64/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-10.x86_64.rpm
5a5d620ec4046530dc4cc9761ff05a5f  x86_64/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-10.x86_64.rpm
75dc21cf6d5c978c8245d7639957bc1d  x86_64/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-10.x86_64.rpm
1da2604630e93685b530d4b46d47a454  x86_64/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-10.x86_64.rpm
e8922442b3ba08b20ff0aaba01b017ab  x86_64/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-10.x86_64.rpm
6fcd7052e0b32fc7ad2790bebd1e71c2  x86_64/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-10.x86_64.rpm
25cd2a14ac8ad51978e46f0fe1f5551c  x86_64/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-10.x86_64.rpm
8e44356861d1306cb63d4b55b6c4dd09  x86_64/xorg-x11-cyrillic-fonts-6.7.0-10.x86_64.rpm
c4087a80655762a8e9e55317efb34aed  x86_64/xorg-x11-doc-6.7.0-10.x86_64.rpm
e0a4dbd0a261d31b1eb95ee0ea944a95  x86_64/xorg-x11-Xnest-6.7.0-10.x86_64.rpm
d20847c9574db571ed3a9b4c5b55d68c  x86_64/xorg-x11-tools-6.7.0-10.x86_64.rpm
8b96b581a166488ab985fa9ba8d9a2a2  x86_64/xorg-x11-xauth-6.7.0-10.x86_64.rpm
f12f6861da2592627eb3bfe06e8c0df1  x86_64/xorg-x11-Mesa-libGL-6.7.0-10.x86_64.rpm
359486a9d0554885b748ef49458426ae  x86_64/xorg-x11-Mesa-libGLU-6.7.0-10.x86_64.rpm
af602a72387f7dd857997e88a9a177d6  x86_64/xorg-x11-Xvfb-6.7.0-10.x86_64.rpm
1a6ebca5b2a13d3cf0ba192b68bbaf64  x86_64/xorg-x11-sdk-6.7.0-10.x86_64.rpm
dd6ffe12805f836359305895dc6cd784  x86_64/xorg-x11-libs-6.7.0-10.i386.rpm
5469b7a87f8c5a4248652ee1e9a11377  x86_64/xorg-x11-libs-data-6.7.0-10.i386.rpm
9a2ca053b04a931f575a1be1e73a45b2  x86_64/xorg-x11-Mesa-libGL-6.7.0-10.i386.rpm
7e8a6414fcf02536847f8ae45893bfd1  x86_64/xorg-x11-Mesa-libGLU-6.7.0-10.i386.rpm
bf07fd7d60eb548ce33a9af4de36ab34  i386/xorg-x11-6.7.0-10.i386.rpm
004532cb02e2ec9acab2e9682665be83  i386/xorg-x11-devel-6.7.0-10.i386.rpm
1e86294ce6c318d389f9ee7103fc3726  i386/xorg-x11-font-utils-6.7.0-10.i386.rpm
0f942a7fda7316932de880abf56d638b  i386/xorg-x11-xfs-6.7.0-10.i386.rpm
7e1ce9816fafe9425a05068ace414757  i386/xorg-x11-twm-6.7.0-10.i386.rpm
74fac8be1caedc751ce7b2af6d95967c  i386/xorg-x11-xdm-6.7.0-10.i386.rpm
dd6ffe12805f836359305895dc6cd784  i386/xorg-x11-libs-6.7.0-10.i386.rpm
5469b7a87f8c5a4248652ee1e9a11377  i386/xorg-x11-libs-data-6.7.0-10.i386.rpm
20c9d95897d02cb28370dd8e7851a96d  i386/xorg-x11-base-fonts-6.7.0-10.i386.rpm
383ee0334a3538fba59c64ef8740a51a  i386/xorg-x11-truetype-fonts-6.7.0-10.i386.rpm
719533a4e53a723e8f26934ec81ad146  i386/xorg-x11-syriac-fonts-6.7.0-10.i386.rpm
4a055faabb847ac9decb722c7367af3b  i386/xorg-x11-75dpi-fonts-6.7.0-10.i386.rpm
6e27f8afd9231e185c81734cc013cc46  i386/xorg-x11-100dpi-fonts-6.7.0-10.i386.rpm
1e324d133b882faf0178151d08836a16  i386/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-10.i386.rpm
27c4d03568cda36517388a822b238a6f  i386/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-10.i386.rpm
9bfd98c6c590ce47623611811065c9ac  i386/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-10.i386.rpm
df1b1aa3cd36426ea068914e8161eefe  i386/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-10.i386.rpm
e5184c3f401471c9f83fbca16bc11dc2  i386/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-10.i386.rpm
466d1293d1db57ef47a5fdd915798bad  i386/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-10.i386.rpm
89445862d48da8207e3400182129932b  i386/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-10.i386.rpm
61dd8cb3b03ae37e00a9585dd38f76eb  i386/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-10.i386.rpm
ac93c1cf6345d2606f91b439e00c5eef  i386/xorg-x11-cyrillic-fonts-6.7.0-10.i386.rpm
3d3ea8a3575122bd3a63d61ca3501aeb  i386/xorg-x11-doc-6.7.0-10.i386.rpm
f802265b36ea9a7c5ea86f68648ae4aa  i386/xorg-x11-Xnest-6.7.0-10.i386.rpm
4e3eea649d7872a069770c8130201285  i386/xorg-x11-tools-6.7.0-10.i386.rpm
c96728b5bba2d9b3d1d1c2fdb64a4c50  i386/xorg-x11-xauth-6.7.0-10.i386.rpm
9a2ca053b04a931f575a1be1e73a45b2  i386/xorg-x11-Mesa-libGL-6.7.0-10.i386.rpm
7e8a6414fcf02536847f8ae45893bfd1  i386/xorg-x11-Mesa-libGLU-6.7.0-10.i386.rpm
b64c1b9229d2bbc866321620993de1da  i386/xorg-x11-Xvfb-6.7.0-10.i386.rpm
7422827cddd9b5510f44f3c765a0adf2  i386/xorg-x11-sdk-6.7.0-10.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------

--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC