Gentoo Archives: gentoo-announce

From: Sune Kloppenborg Jeppesen <jaervosz@g.o>
To: gentoo-announce@l.g.o
Cc: bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject: [gentoo-announce] [ GLSA 200608-12 ] x11vnc: Authentication bypass in included LibVNCServer code
Date: Mon, 07 Aug 2006 18:46:10
Message-Id: 200608072002.27069.jaervosz@gentoo.org
1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2 Gentoo Linux Security Advisory GLSA 200608-12
3 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4 http://security.gentoo.org/
5 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7 Severity: High
8 Title: x11vnc: Authentication bypass in included LibVNCServer code
9 Date: August 07, 2006
10 Bugs: #142559
11 ID: 200608-12
12
13 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15 Synopsis
16 ========
17
18 VNC servers created with x11vnc accept insecure protocol types, even
19 when the server does not offer it, resulting in the possibility of
20 unauthorized access to the server.
21
22 Background
23 ==========
24
25 x11vnc provides VNC servers for X displays.
26
27 Affected packages
28 =================
29
30 -------------------------------------------------------------------
31 Package / Vulnerable / Unaffected
32 -------------------------------------------------------------------
33 1 x11-misc/x11vnc < 0.8.1 >= 0.8.1
34
35 Description
36 ===========
37
38 x11vnc includes vulnerable LibVNCServer code, which fails to properly
39 validate protocol types effectively letting users decide what protocol
40 to use, such as "Type 1 - None" (GLSA-200608-05). x11vnc will accept
41 this security type, even if it is not offered by the server.
42
43 Impact
44 ======
45
46 An attacker could exploit this vulnerability to gain unauthorized
47 access with the privileges of the user running the VNC server.
48
49 Workaround
50 ==========
51
52 There is no known workaround at this time.
53
54 Resolution
55 ==========
56
57 All x11vnc users should upgrade to the latest version:
58
59 # emerge --sync
60 # emerge --ask --oneshot --verbose ">=x11-misc/x11vnc-0.8.1"
61
62 References
63 ==========
64
65 [ 1 ] CVE-2006-2450
66 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2450
67 [ 2 ] GLSA-200608-05
68 http://www.gentoo.org/security/en/glsa/glsa-200608-05.xml
69
70 Availability
71 ============
72
73 This GLSA and any updates to it are available for viewing at
74 the Gentoo Security Website:
75
76 http://security.gentoo.org/glsa/glsa-200608-12.xml
77
78 Concerns?
79 =========
80
81 Security is a primary focus of Gentoo Linux and ensuring the
82 confidentiality and security of our users machines is of utmost
83 importance to us. Any security concerns should be addressed to
84 security@g.o or alternatively, you may file a bug at
85 http://bugs.gentoo.org.
86
87 License
88 =======
89
90 Copyright 2006 Gentoo Foundation, Inc; referenced text
91 belongs to its owner(s).
92
93 The contents of this document are licensed under the
94 Creative Commons - Attribution / Share Alike license.
95
96 http://creativecommons.org/licenses/by-sa/2.5