X.org X server X render 缓冲区溢出

漏洞信息详情

X.org X server X render 缓冲区溢出

• CNNVD编号：CNNVD-200605-037
• 危害等级： 低危
  
  
• CVE编号：
  CVE-2006-1526
  
• 漏洞类型：
  
  
  缓冲区溢出
  
• 发布时间：
  
  2006-05-02
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2006-05-09
  
• 厂        商：
  
  x.org
• 漏洞来源：
  Bart Massey is cre…

X.org X server 6.8.0以上版本的X render (Xrender)扩展名存在缓冲区溢出，可以使远程攻击者引起拒绝服务(崩溃),比如通过来自XCB xcb/xcb-demo的rendertest中的(1) XRenderCompositeTriStrip和(2) XRenderCompositeTriFan请求，会因使用\”＆\”而非\”*\”operator的表达式中的typo而导致错误的内存分配。

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

OpenBSD OpenBSD 3.8

OpenBSD 007_xorg.patch

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/007_xorg.patch

OpenBSD OpenBSD 3.9

OpenBSD 002_xorg.patch

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/002_xorg.patch

Sun Solaris 10

Sun T118966-20

http://sunsolve.sun.com/tpatches

OpenBSD OpenBSD 3.7

OpenBSD 013_xorg.patch

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/013_xorg.patch

Trustix Secure Linux 2.2

Trustix clamav-0.88.2-1tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix clamav-devel-0.88.2-1tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-devel-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-md5-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-otp-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-plain-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-sql-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix cyrus-sasl-utils-2.1.20-7tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix libtiff-3.7.3-2tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix libtiff-devel-3.7.3-2tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix rsync-2.6.8-1tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

Trustix rsync-server-2.6.8-1tr.i586.rpm

TSL 2.2

ftp://ftp.trustix.org/pub/trustix/updates

来源: US-CERT

名称: VU#633257

链接:http://www.kb.cert.org/vuls/id/633257

来源: REDHAT

名称: RHSA-2006:0451

链接:http://www.redhat.com/support/errata/RHSA-2006-0451.html

来源: SUSE

名称: SUSE-SA:2006:023

链接:http://www.novell.com/linux/security/advisories/2006_05_03.html

来源: GENTOO

名称: GLSA-200605-02

链接:http://www.gentoo.org/security/en/glsa/glsa-200605-02.xml

来源: VUPEN

名称: ADV-2006-1617

链接:http://www.frsirt.com/english/advisories/2006/1617

来源: SECUNIA

名称: 19956

链接:http://secunia.com/advisories/19956

来源: SECUNIA

名称: 19951

链接:http://secunia.com/advisories/19951

来源: SECUNIA

名称: 19943

链接:http://secunia.com/advisories/19943

来源: SECUNIA

名称: 19921

链接:http://secunia.com/advisories/19921

来源: SECUNIA

名称: 19916

链接:http://secunia.com/advisories/19916

来源: SECUNIA

名称: 19915

链接:http://secunia.com/advisories/19915

来源: SECUNIA

名称: 19900

链接:http://secunia.com/advisories/19900

来源: MLIST

名称: [xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension

链接:http://lists.freedesktop.org/archives/xorg/2006-May/015136.html

来源: bugs.freedesktop.org

链接:https://bugs.freedesktop.org/show_bug.cgi?id=6642

来源: UBUNTU

名称: USN-280-1

链接:http://www.ubuntulinux.org/support/documentation/usn/usn-280-1

来源: OPENBSD

名称: [3.8] 007: SECURITY FIX: May 2, 2006

链接:http://www.openbsd.org/errata38.html#xorg

来源: SECTRACK

名称: 1016018

链接:http://securitytracker.com/id?1016018

来源: MANDRIVA

名称: MDKSA-2006:081

链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:081

来源: XF

名称: xorg-xrender-bo(26200)

链接:http://xforce.iss.net/xforce/xfdb/26200

来源: TRUSTIX

名称: 2006-0024

链接:http://www.trustix.org/errata/2006/0024

来源: BID

名称: 17795

链接:http://www.securityfocus.com/bid/17795

来源: FEDORA

名称: FLSA:190777

链接:http://www.securityfocus.com/archive/1/archive/1/436327/100/0/threaded

来源: MANDRIVA

名称: MDKSA-2006:081

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2006:081

来源: SUNALERT

名称: 102339

链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102339-1

来源: SECUNIA

名称: 19983

链接:http://secunia.com/advisories/19983