CentOS Update For Xorg-x11-server-sdk CESA-2013:1868 Centos5 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. An integer overflow, which led to a heap-based buffer overflow, was found in the way X.Org server handled trapezoids. A malicious, authorized client could use this flaw to crash the X.Org server or, potentially, execute arbitrary code with root privileges. (CVE-2013-6424) All xorg-x11-server users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.

Affected

xorg-x11-server-sdk on CentOS 5

References

http://lists.centos.org/pipermail/centos-announce/2013-December/020093.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-6424
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:1082 (cups)
CentOS Security Advisory CESA-2009:1463 (newt)
CentOS Update for apr CESA-2011:0844 centos5 i386
CentOS Security Advisory CESA-2009:1140 (ruby)
CentOS Security Advisory CESA-2009:1528 (samba)

CentOS Update for xorg-x11-server-sdk CESA-2013:1868 centos5

Take action and discover your vulnerabilities