Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2014.0883.1
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2014:0883-1)
Summary:The remote host is missing an update for the 'xorg-x11-libXext' package(s) announced via the SUSE-SU-2014:0883-1 advisory.
Description:Summary:
The remote host is missing an update for the 'xorg-x11-libXext' package(s) announced via the SUSE-SU-2014:0883-1 advisory.

Vulnerability Insight:
This is a SUSE Linux Enterprise Server 11 SP1 LTSS roll up update of xorg-x11-libXext, fixing a security issue.

These issues require connection to a malicious X server to trigger the bugs in client libraries.

Security issue fixed:

* CVE-2013-1982: Multiple integer overflows in X.org libXext allowed X
servers to trigger allocation of insufficient memory and a buffer
overflow via vectors related to the (1)
XcupGetReservedColormapEntries, (2) XcupStoreColors, (3)
XdbeGetVisualInfo, (4) XeviGetVisualInfo, (5) XShapeGetRectangles, and (6)
XSyncListSystemCounters functions.

Security Issue references:

* CVE-2013-1982

Affected Software/OS:
'xorg-x11-libXext' package(s) on SUSE Linux Enterprise Server 11 SP1.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-1982
Debian Security Information: DSA-2682 (Google Search)
http://www.debian.org/security/2013/dsa-2682
http://www.openwall.com/lists/oss-security/2013/05/23/3
SuSE Security Announcement: openSUSE-SU-2013:1009 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-06/msg00139.html
http://www.ubuntu.com/usn/USN-1857-1
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.