[gentoo-announce] [ GLSA 200409-34 ] X.org, XFree86: Integer and stack overflows in libXpm - gentoo-announce

From:	Thierry Carrez <koon@g.o>
To:	gentoo-announce@l.g.o
Cc:	bugtraq@×××××××××××××.com, full-disclosure@××××××××××××.com, security-alerts@×××××××××××××.com
Subject:	[gentoo-announce] [ GLSA 200409-34 ] X.org, XFree86: Integer and stack overflows in libXpm
Date:	Mon, 27 Sep 2004 09:46:40
Message-Id:	`4157E0F7.5080408@gentoo.org`

1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

2

Gentoo Linux Security Advisory                           GLSA 200409-34

3

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

4

                                            http://security.gentoo.org/

5

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

6

7

  Severity: Normal

8

     Title: X.org, XFree86: Integer and stack overflows in libXpm

9

      Date: September 27, 2004

10

      Bugs: #64152

11

        ID: 200409-34

12

13

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

14

15

Synopsis

16

========

17

18

libXpm, the X Pixmap library that is a part of the X Window System,

19

contains multiple stack and integer overflows that may allow a

20

carefully-crafted XPM file to crash applications linked against

21

libXpm, potentially allowing the execution of arbitrary code.

22

23

Background

24

==========

25

26

XFree86 and X.org are both implementations of the X Window System.

27

28

Affected packages

29

=================

30

31

    -------------------------------------------------------------------

32

     Package            /  Vulnerable  /                    Unaffected

33

    -------------------------------------------------------------------

34

  1  x11-base/xorg-x11     < 6.7.0-r2                     *>= 6.7.0-r2

35

                            == 6.8.0                       >= 6.8.0-r1

36

  2  x11-base/xfree        < 4.3.0-r7                      >= 4.3.0-r7

37

    -------------------------------------------------------------------

38

     # Package 2 [x11-base/xfree] only applies to ALPHA and x86 users.

39

40

     NOTE: Any packages listed without architecture tags apply to all

41

           architectures...

42

    -------------------------------------------------------------------

43

     NOTE: Usage of XFree86 is deprecated on the AMD64, HPPA, IA64,

44

           MIPS, PPC and SPARC architectures: XFree86 users on those

45

           architectures should switch to X.org rather than upgrading

46

           XFree86.

47

    -------------------------------------------------------------------

48

     2 affected packages

49

    -------------------------------------------------------------------

50

51

Description

52

===========

53

54

Chris Evans has discovered multiple integer and stack overflow

55

vulnerabilities in the X Pixmap library, libXpm, which is a part of the

56

X Window System. These overflows can be exploited by the execution of a

57

malicious XPM file, which can crash applications that are dependent on

58

libXpm.

59

60

Impact

61

======

62

63

A carefully-crafted XPM file could crash applications that are linked

64

against libXpm, potentially allowing the execution of arbitrary code

65

with the privileges of the user running the application.

66

67

Workaround

68

==========

69

70

There is no known workaround at this time.

71

72

Resolution

73

==========

74

75

All X.org users should upgrade to the latest version:

76

77

    # emerge sync

78

79

    # emerge -pv ">=x11-base/xorg-x11-6.7.0-r2"

80

    # emerge ">=x11-base/xorg-x11-6.7.0-r2"

81

82

All XFree86 users should upgrade to the latest version:

83

84

    # emerge sync

85

86

    # emerge -pv ">=x11-base/xfree-4.3.0-r7"

87

    # emerge ">=x11-base/xfree-4.3.0-r7"

88

89

Note: Usage of XFree86 is deprecated on the AMD64, HPPA, IA64, MIPS,

90

PPC and SPARC architectures: XFree86 users on those architectures

91

should switch to X.org rather than upgrading XFree86.

92

93

References

94

==========

95

96

  [ 1 ] X.org Security Advisory

97

        http://freedesktop.org/pipermail/xorg/2004-September/003196.html

98

  [ 2 ] X11R6.8.1 Release Notes

99

        http://freedesktop.org/pipermail/xorg/2004-September/003172.html

100

  [ 3 ] CAN-2004-0687

101

        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687

102

  [ 4 ] CAN-2004-0688

103

        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688

104

105

Availability

106

============

107

108

This GLSA and any updates to it are available for viewing at

109

the Gentoo Security Website:

110

111

  http://security.gentoo.org/glsa/glsa-200409-34.xml

112

113

Concerns?

114

=========

115

116

Security is a primary focus of Gentoo Linux and ensuring the

117

confidentiality and security of our users machines is of utmost

118

importance to us. Any security concerns should be addressed to

119

security@g.o or alternatively, you may file a bug at

120

http://bugs.gentoo.org.

121

122

License

123

=======

124

125

Copyright 2004 Gentoo Foundation, Inc; referenced text

126

belongs to its owner(s).

127

128

The contents of this document are licensed under the

129

Creative Commons - Attribution / Share Alike license.

130

131

http://creativecommons.org/licenses/by-sa/1.0

Gentoo Archives: gentoo-announce

Attachments

1	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2	Gentoo Linux Security Advisory GLSA 200409-34
3	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4	http://security.gentoo.org/
5	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7	Severity: Normal
8	Title: X.org, XFree86: Integer and stack overflows in libXpm
9	Date: September 27, 2004
10	Bugs: #64152
11	ID: 200409-34
12
13	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15	Synopsis
16	========
17
18	libXpm, the X Pixmap library that is a part of the X Window System,
19	contains multiple stack and integer overflows that may allow a
20	carefully-crafted XPM file to crash applications linked against
21	libXpm, potentially allowing the execution of arbitrary code.
22
23	Background
24	==========
25
26	XFree86 and X.org are both implementations of the X Window System.
27
28	Affected packages
29	=================
30
31	-------------------------------------------------------------------
32	Package / Vulnerable / Unaffected
33	-------------------------------------------------------------------
34	1 x11-base/xorg-x11 < 6.7.0-r2 *>= 6.7.0-r2
35	== 6.8.0 >= 6.8.0-r1
36	2 x11-base/xfree < 4.3.0-r7 >= 4.3.0-r7
37	-------------------------------------------------------------------
38	# Package 2 [x11-base/xfree] only applies to ALPHA and x86 users.
39
40	NOTE: Any packages listed without architecture tags apply to all
41	architectures...
42	-------------------------------------------------------------------
43	NOTE: Usage of XFree86 is deprecated on the AMD64, HPPA, IA64,
44	MIPS, PPC and SPARC architectures: XFree86 users on those
45	architectures should switch to X.org rather than upgrading
46	XFree86.
47	-------------------------------------------------------------------
48	2 affected packages
49	-------------------------------------------------------------------
50
51	Description
52	===========
53
54	Chris Evans has discovered multiple integer and stack overflow
55	vulnerabilities in the X Pixmap library, libXpm, which is a part of the
56	X Window System. These overflows can be exploited by the execution of a
57	malicious XPM file, which can crash applications that are dependent on
58	libXpm.
59
60	Impact
61	======
62
63	A carefully-crafted XPM file could crash applications that are linked
64	against libXpm, potentially allowing the execution of arbitrary code
65	with the privileges of the user running the application.
66
67	Workaround
68	==========
69
70	There is no known workaround at this time.
71
72	Resolution
73	==========
74
75	All X.org users should upgrade to the latest version:
76
77	# emerge sync
78
79	# emerge -pv ">=x11-base/xorg-x11-6.7.0-r2"
80	# emerge ">=x11-base/xorg-x11-6.7.0-r2"
81
82	All XFree86 users should upgrade to the latest version:
83
84	# emerge sync
85
86	# emerge -pv ">=x11-base/xfree-4.3.0-r7"
87	# emerge ">=x11-base/xfree-4.3.0-r7"
88
89	Note: Usage of XFree86 is deprecated on the AMD64, HPPA, IA64, MIPS,
90	PPC and SPARC architectures: XFree86 users on those architectures
91	should switch to X.org rather than upgrading XFree86.
92
93	References
94	==========
95
96	[ 1 ] X.org Security Advisory
97	http://freedesktop.org/pipermail/xorg/2004-September/003196.html
98	[ 2 ] X11R6.8.1 Release Notes
99	http://freedesktop.org/pipermail/xorg/2004-September/003172.html
100	[ 3 ] CAN-2004-0687
101	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
102	[ 4 ] CAN-2004-0688
103	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
104
105	Availability
106	============
107
108	This GLSA and any updates to it are available for viewing at
109	the Gentoo Security Website:
110
111	http://security.gentoo.org/glsa/glsa-200409-34.xml
112
113	Concerns?
114	=========
115
116	Security is a primary focus of Gentoo Linux and ensuring the
117	confidentiality and security of our users machines is of utmost
118	importance to us. Any security concerns should be addressed to
119	security@g.o or alternatively, you may file a bug at
120	http://bugs.gentoo.org.
121
122	License
123	=======
124
125	Copyright 2004 Gentoo Foundation, Inc; referenced text
126	belongs to its owner(s).
127
128	The contents of this document are licensed under the
129	Creative Commons - Attribution / Share Alike license.
130
131	http://creativecommons.org/licenses/by-sa/1.0