--------------------------------------------------------------------- Fedora Test Update Notification FEDORALEGACY-2004-1831 Bugzilla https://bugzilla.fedora.us/show_bug.cgi?id=1831 2004-09-29 --------------------------------------------------------------------- Name : XFree86 Version : 4.3.0-2.90.57.legacy Summary : The basic fonts, programs and docs for an X workstation. Description : XFree86 is an open source implementation of the X Window System. It provides the basic low level functionality which full fledged graphical user interfaces (GUIs) such as GNOME and KDE are designed upon. --------------------------------------------------------------------- Update Information: Steve Rumble discovered that xdm in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions. --------------------------------------------------------------------- Changelog: * Tue Sep 28 2004 Dominic Hargreaves <dom@xxxxxxxx> 4.3.0-2.x.57.legacy - Add BuildRequires on gcc-c++ * Tue Jul 06 2004 J.S.Peatfield <J.S.Peatfield@xxxxxxxxxxxxxxx> 4.3.0-2.x.56.leg ac - fix CAN-2004-0419 - XDM in XFree86 socket open vulnerability with patch based on one from http://bugs.xfree86.org/show_bug.cgi?id=1376 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedoralegacy.org/redhat/ 7373b7bffdce87d9692f76f1a3f8038a4dd06cfb 9/updates-testing/i386/XFree86-100dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 305807aabe1775410489be712b391be6db3ec5e0 9/updates-testing/i386/XFree86-4.3.0-2.90.57.legacy.i386.rpm 830b762d2ecf3fa41c762640c9cdd930bf272ed2 9/updates-testing/i386/XFree86-75dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 2a0a32dbd0e1d329896ff85ace84417054cc651d 9/updates-testing/i386/XFree86-base-fonts-4.3.0-2.90.57.legacy.i386.rpm 3740a0e48b10ce45a97d3e60a958a723961b9bf2 9/updates-testing/i386/XFree86-cyrillic-fonts-4.3.0-2.90.57.legacy.i386.rpm 18ad671755daeb990882630de217426010a2040d 9/updates-testing/i386/XFree86-devel-4.3.0-2.90.57.legacy.i386.rpm a43d31e70c84e77a4a4a986fdaef0b0a625daa51 9/updates-testing/i386/XFree86-doc-4.3.0-2.90.57.legacy.i386.rpm e6c1795cd1915f559d1cf3a583e07a9068092e5a 9/updates-testing/i386/XFree86-font-utils-4.3.0-2.90.57.legacy.i386.rpm 89aa4c43ed29222042e0d0d9cf84bd180a591438 9/updates-testing/i386/XFree86-ISO8859-14-100dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 4e715cf42babaa041acaad6ce8f4cfa2255b9af9 9/updates-testing/i386/XFree86-ISO8859-14-75dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm b7c8916aed637c832d9d07fa3d16765e4cd8b263 9/updates-testing/i386/XFree86-ISO8859-15-100dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 58da214f4cc310e41d2aecdd9c38a618a2fd2397 9/updates-testing/i386/XFree86-ISO8859-15-75dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 6a815dba95f9250475de7be29e41faa19a881344 9/updates-testing/i386/XFree86-ISO8859-2-100dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm da8a8c248c56bb2e7e55233e2668e1a6bf184199 9/updates-testing/i386/XFree86-ISO8859-2-75dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 38a71809da1e8e930511f0cc3ce1296ec5d9ba7e 9/updates-testing/i386/XFree86-ISO8859-9-100dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm 7320da3031d5e52aff7e5a852d768b281bcb5e78 9/updates-testing/i386/XFree86-ISO8859-9-75dpi-fonts-4.3.0-2.90.57.legacy.i386.rpm d9c817e6cf113b97de218d71057dde823bffecee 9/updates-testing/i386/XFree86-libs-4.3.0-2.90.57.legacy.i386.rpm a1992724b585356c8645e4fa8a77fffa3371e6ae 9/updates-testing/i386/XFree86-libs-data-4.3.0-2.90.57.legacy.i386.rpm 658e243b612fa09e4db9f49e2461a9f8df9de6f9 9/updates-testing/i386/XFree86-Mesa-libGL-4.3.0-2.90.57.legacy.i386.rpm 8b545b3837ba1dd0c6326aecef464dc42c5b1733 9/updates-testing/i386/XFree86-Mesa-libGLU-4.3.0-2.90.57.legacy.i386.rpm 806053982f7777bb0868c3c75d6b21e6c23587e3 9/updates-testing/i386/XFree86-sdk-4.3.0-2.90.57.legacy.i386.rpm 6b6432e825829a60127cbe61cb281e81eb972221 9/updates-testing/i386/XFree86-syriac-fonts-4.3.0-2.90.57.legacy.i386.rpm 3a7b8ae74c215228a6ae1c423ae891a4211fd027 9/updates-testing/i386/XFree86-tools-4.3.0-2.90.57.legacy.i386.rpm 579b3456b8ad40f21afb99a5dff7ebe6f1e241ee 9/updates-testing/i386/XFree86-truetype-fonts-4.3.0-2.90.57.legacy.i386.rpm d4efc73d58bbaf3be6868eae6701a9b1654cfafc 9/updates-testing/i386/XFree86-twm-4.3.0-2.90.57.legacy.i386.rpm 6c49b54fbacd2c1f4f5eed2d3b6a77f79cf8f6a8 9/updates-testing/i386/XFree86-xauth-4.3.0-2.90.57.legacy.i386.rpm 8a1553bee519e073d769afadee8848f274000392 9/updates-testing/i386/XFree86-xdm-4.3.0-2.90.57.legacy.i386.rpm 3b04bd562750b72267403115be089cad469a82d8 9/updates-testing/i386/XFree86-xfs-4.3.0-2.90.57.legacy.i386.rpm 16db0d71ca67d7fd9c1500b979efcaefcfec65c8 9/updates-testing/i386/XFree86-Xnest-4.3.0-2.90.57.legacy.i386.rpm 0237c68cc9d8e2fbafd80c7af519c2587001e672 9/updates-testing/i386/XFree86-Xvfb-4.3.0-2.90.57.legacy.i386.rpm 7e8484046cbecc96263abf2d86282e59846cce74 9/updates-testing/SRPMS/XFree86-4.3.0-2.90.57.legacy.src.rpm Please note that this update is also available via yum and apt through the updates-testing channel. Many people find this an easier way to apply updates. --------------------------------------------------------------------- [-- Error: could not find beginning of PGP message! --]
Attachment:
signature.asc
Description: Digital signature
-- fedora-legacy-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-legacy-list
