7.5 - DSA-723

Executive Summary

Summary
Title	New XFree86 packages fix arbitrary code execution

Informations
Name	DSA-723	First vendor Publication	2005-05-09
Vendor	Debian	Last vendor Modification	2005-05-09
Severity (Vendor)	N/A	Revision	1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A buffer overflow has been discovered in the Xpm library which is used in XFree86. A remote attacker could provide a specially crafted XPM image that could lead to the execution or arbitrary code.

For the stable distribution (woody) this problem has been fixed in version 4.1.0-16woody6

For the unstable distribution (sid) this problem will be fixed in version 4.3.0.dfsg.1-13, which is currently in preparation.

We recommend that you upgrade your xfree86 and associated packages.

Original Source

Url : http://www.debian.org/security/2005/dsa-723

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10411

Oval ID:	oval:org.mitre.oval:def:10411
Title:	scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Description:	scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-0605	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section XFree86-cyrillic-fonts is earlier than 0:4.3.0-81.EL AND XFree86-Xvfb is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-14-100dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-libs is earlier than 0:4.3.0-81.EL AND XFree86-75dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-truetype-fonts is earlier than 0:4.3.0-81.EL AND XFree86-twm is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-9-75dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-libs-data is earlier than 0:4.3.0-81.EL AND XFree86-doc is earlier than 0:4.3.0-81.EL AND openmotif21 is earlier than 0:2.1.30-9.RHEL3.6 AND XFree86-ISO8859-15-100dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-base-fonts is earlier than 0:4.3.0-81.EL AND openmotif is earlier than 0:2.2.3-5.RHEL3.2 AND XFree86-100dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-15-75dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-2-75dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-font-utils is earlier than 0:4.3.0-81.EL AND XFree86-Mesa-libGL is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-2-100dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-xdm is earlier than 0:4.3.0-81.EL AND XFree86-sdk is earlier than 0:4.3.0-81.EL AND XFree86 is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-9-100dpi-fonts is earlier than 0:4.3.0-81.EL AND XFree86-Xnest is earlier than 0:4.3.0-81.EL AND XFree86-xfs is earlier than 0:4.3.0-81.EL AND XFree86-tools is earlier than 0:4.3.0-81.EL AND XFree86-syriac-fonts is earlier than 0:4.3.0-81.EL AND XFree86-ISO8859-14-75dpi-fonts is earlier than 0:4.3.0-81.EL AND openmotif-devel is earlier than 0:2.2.3-5.RHEL3.2 AND XFree86-xauth is earlier than 0:4.3.0-81.EL AND XFree86-Mesa-libGLU is earlier than 0:4.3.0-81.EL AND XFree86-devel is earlier than 0:4.3.0-81.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section fonts-xorg-syriac is earlier than 0:6.8.1.1-1.EL.1 AND fonts-xorg-ISO8859-14-100dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-libs is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-xauth is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-ISO8859-9-100dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-twm is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-base is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-xfs is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11-deprecated-libs-devel is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11-sdk is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11-Xvfb is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11-xdm is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-100dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-font-utils is earlier than 0:6.8.2-1.EL.13.6 AND openmotif-devel is earlier than 0:2.2.3-9.RHEL4.1 AND fonts-xorg-ISO8859-2-75dpi is earlier than 0:6.8.1.1-1.EL.1 AND fonts-xorg-ISO8859-15-75dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-doc is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-75dpi is earlier than 0:6.8.1.1-1.EL.1 AND openmotif21 is earlier than 0:2.1.30-11.RHEL4.4 AND fonts-xorg-truetype is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-Mesa-libGLU is earlier than 0:6.8.2-1.EL.13.6 AND openmotif is earlier than 0:2.2.3-9.RHEL4.1 AND fonts-xorg-ISO8859-15-100dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-Mesa-libGL is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11-Xdmx is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-ISO8859-2-100dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-devel is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11-deprecated-libs is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-cyrillic is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-Xnest is earlier than 0:6.8.2-1.EL.13.6 AND xorg-x11 is earlier than 0:6.8.2-1.EL.13.6 AND fonts-xorg-ISO8859-9-75dpi is earlier than 0:6.8.1.1-1.EL.1 AND fonts-xorg-ISO8859-14-75dpi is earlier than 0:6.8.1.1-1.EL.1 AND xorg-x11-tools is earlier than 0:6.8.2-1.EL.13.6

CPE : Common Platform Enumeration

Type	Description	Count
Application	Lesstif cpe:2.3:a:lesstif:lesstif:0.93.94:::::::*	1
Application	Sgi Propack cpe:2.3:a:sgi:propack:3.0:::::::*	1
Application	X.Org X11R6 cpe:2.3:a:x.org:x11r6:6.8.1:::::::* cpe:2.3:a:x.org:x11r6:6.8:::::::* cpe:2.3:a:x.org:x11r6:6.7.0:::::::*	3
Application	Xfree86 Project X11R6 cpe:2.3:a:xfree86_project:x11r6:4.3.0.2:::::::* cpe:2.3:a:xfree86_project:x11r6:4.3.0.1:::::::* cpe:2.3:a:xfree86_project:x11r6:4.3.0:::::::* cpe:2.3:a:xfree86_project:x11r6:4.2.1:::::::* cpe:2.3:a:xfree86_project:x11r6:4.2.1::errata::::: cpe:2.3:a:xfree86_project:x11r6:4.2.0:::::::* cpe:2.3:a:xfree86_project:x11r6:4.1.12:::::::* cpe:2.3:a:xfree86_project:x11r6:4.1.11:::::::* cpe:2.3:a:xfree86_project:x11r6:4.1.0:::::::* cpe:2.3:a:xfree86_project:x11r6:4.0.3:::::::* cpe:2.3:a:xfree86_project:x11r6:4.0.2.11:::::::* cpe:2.3:a:xfree86_project:x11r6:4.0.1:::::::* cpe:2.3:a:xfree86_project:x11r6:4.0:::::::* cpe:2.3:a:xfree86_project:x11r6:3.3.6:::::::* cpe:2.3:a:xfree86_project:x11r6:3.3.5:::::::* cpe:2.3:a:xfree86_project:x11r6:3.3.4:::::::* cpe:2.3:a:xfree86_project:x11r6:3.3.3:::::::* cpe:2.3:a:xfree86_project:x11r6:3.3.2:::::::* cpe:2.3:a:xfree86_project:x11r6:3.3:::::::*	19
Os	Altlinux Alt Linux cpe:2.3:o:altlinux:alt_linux:2.3::compact::::: cpe:2.3:o:altlinux:alt_linux:2.3::junior:::::	2
Os	Mandrakesoft Mandrake Linux cpe:2.3:o:mandrakesoft:mandrake_linux:10.2:::::::* cpe:2.3:o:mandrakesoft:mandrake_linux:10.2::x86_64::::: cpe:2.3:o:mandrakesoft:mandrake_linux:10.1::x86_64::::: cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:::::::* cpe:2.3:o:mandrakesoft:mandrake_linux:10.0::amd64::::: cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:::::::*	6
Os	Mandrakesoft Mandrake Linux Corporate Server cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64::::: cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0:::::::* cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64::::: cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1:::::::*	4
Os	Redhat Enterprise Linux cpe:2.3:o:redhat:enterprise_linux:4.0::advanced_server::::: cpe:2.3:o:redhat:enterprise_linux:4.0::enterprise_server::::: cpe:2.3:o:redhat:enterprise_linux:4.0::workstation::::: cpe:2.3:o:redhat:enterprise_linux:3.0::advanced_server::::: cpe:2.3:o:redhat:enterprise_linux:3.0::workstation_server::::: cpe:2.3:o:redhat:enterprise_linux:3.0::enterprise_server:::::	6
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:::::::* cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:::::::*	2
Os	Redhat Fedora Core cpe:2.3:o:redhat:fedora_core:core_3.0:::::::* cpe:2.3:o:redhat:fedora_core:core_2.0:::::::*	2
Os	Suse Suse Linux cpe:2.3:o:suse:suse_linux:9.2::x86_64::::: cpe:2.3:o:suse:suse_linux:9.2:::::::* cpe:2.3:o:suse:suse_linux:9.1:::::::* cpe:2.3:o:suse:suse_linux:9.1::x86_64::::: cpe:2.3:o:suse:suse_linux:9.0::x86_64::::: cpe:2.3:o:suse:suse_linux:9.0:::::::* cpe:2.3:o:suse:suse_linux:8.2:::::::* cpe:2.3:o:suse:suse_linux:8.1:::::::* cpe:2.3:o:suse:suse_linux:8.0:::::::* cpe:2.3:o:suse:suse_linux:8.0::i386::::: cpe:2.3:o:suse:suse_linux:7.3:::::::* cpe:2.3:o:suse:suse_linux:7.3::i386::::: cpe:2.3:o:suse:suse_linux:7.3::ppc::::: cpe:2.3:o:suse:suse_linux:7.3::sparc::::: cpe:2.3:o:suse:suse_linux:7.2:::::::* cpe:2.3:o:suse:suse_linux:7.2::i386::::: cpe:2.3:o:suse:suse_linux:7.1::spa::::: cpe:2.3:o:suse:suse_linux:7.1::sparc::::: cpe:2.3:o:suse:suse_linux:7.1::x86::::: cpe:2.3:o:suse:suse_linux:7.1:alpha:::::: cpe:2.3:o:suse:suse_linux:7.1:::::::* cpe:2.3:o:suse:suse_linux:7.0::sparc::::: cpe:2.3:o:suse:suse_linux:7.0:::::::* cpe:2.3:o:suse:suse_linux:7.0:alpha:::::: cpe:2.3:o:suse:suse_linux:7.0::i386::::: cpe:2.3:o:suse:suse_linux:7.0::ppc::::: cpe:2.3:o:suse:suse_linux:6.4:alpha:::::: cpe:2.3:o:suse:suse_linux:6.4:::::::* cpe:2.3:o:suse:suse_linux:6.4::i386::::: cpe:2.3:o:suse:suse_linux:6.4::ppc::::: cpe:2.3:o:suse:suse_linux:6.3:alpha:::::: cpe:2.3:o:suse:suse_linux:6.3::ppc::::: cpe:2.3:o:suse:suse_linux:6.3:::::::* cpe:2.3:o:suse:suse_linux:6.2:::::::* cpe:2.3:o:suse:suse_linux:6.1:alpha:::::: cpe:2.3:o:suse:suse_linux:6.1:::::::*	36

OpenVAS Exploits

Date	Description
2010-02-03	Name : Solaris Update for CDE 1.6 119280-22 File : nvt/gb_solaris_119280_22.nasl
2010-02-03	Name : Solaris Update for Runtime library for Solaris 10 119281-22 File : nvt/gb_solaris_119281_22.nasl
2009-11-17	Name : Mac OS X Version File : nvt/macosx_version.nasl
2009-10-10	Name : SLES9: Security update for XFree86-libs File : nvt/sles9p5016773.nasl
2008-09-24	Name : Gentoo Security Advisory GLSA 200503-08 (openmotif) File : nvt/glsa_200503_08.nasl
2008-09-24	Name : Gentoo Security Advisory GLSA 200503-15 (X.org) File : nvt/glsa_200503_15.nasl
2008-01-17	Name : Debian Security Advisory DSA 723-1 (xfree86) File : nvt/deb_723_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
14373	libXpm XPM Image GetImagePixels() / PutImagePixels() Overflow

Nessus® Vulnerability Scanner

Date	Description
2010-01-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0524.nasl - Type : ACT_GATHER_INFO
2010-01-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0261.nasl - Type : ACT_GATHER_INFO
2006-07-05	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-198.nasl - Type : ACT_GATHER_INFO
2006-07-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-331.nasl - Type : ACT_GATHER_INFO
2006-07-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-412.nasl - Type : ACT_GATHER_INFO
2006-01-15	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-97-1.nasl - Type : ACT_GATHER_INFO
2006-01-15	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-92-1.nasl - Type : ACT_GATHER_INFO
2005-09-12	Name : The remote Fedora Core host is missing a security update. File : fedora_2005-273.nasl - Type : ACT_GATHER_INFO
2005-08-18	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_SecUpd2005-007.nasl - Type : ACT_GATHER_INFO
2005-06-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-198.nasl - Type : ACT_GATHER_INFO
2005-05-28	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-473.nasl - Type : ACT_GATHER_INFO
2005-05-19	Name : The remote Fedora Core host is missing a security update. File : fedora_2005-272.nasl - Type : ACT_GATHER_INFO
2005-05-12	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-412.nasl - Type : ACT_GATHER_INFO
2005-05-11	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-081.nasl - Type : ACT_GATHER_INFO
2005-05-11	Name : The remote Debian host is missing a security-related update. File : debian_DSA-723.nasl - Type : ACT_GATHER_INFO
2005-05-02	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-080.nasl - Type : ACT_GATHER_INFO
2005-04-07	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-044.nasl - Type : ACT_GATHER_INFO
2005-03-30	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-331.nasl - Type : ACT_GATHER_INFO
2005-03-14	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200503-15.nasl - Type : ACT_GATHER_INFO
2005-03-06	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200503-08.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:34:02	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	1
CPE ID(s)	82
osvdb(s)	1
Openvas Exploit(s)	7
Nessus® Exploit(s)	20

	Related
7.5	CVE-2005-0605
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

7.5 - DSA-723

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU