• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

RETIRED: X.Org X Server Local Privilege Escalation and Information Disclosure Vulnerabilities

References:

• Multiple Vendor X Server EVI and MIT-SHM Extensions Integer Overflow (iDefense Labs)
  
• Multiple Vendor X Server TOG-CUP Extension Information Disclosure Vulnerability (iDefense Labs)
  
• Multiple Vendor X Server XFree86-Misc Extension Invalid Array Index (iDefense Labs)
  
• Multiple Vendor X Server XInput Extension Multiple Memory Corruption (iDefense Labs)
  
• X.Org Homepage (X.Org)
  
• iDefense Security Advisory 01.17.08: Multiple Vendor X Server EVI and MIT-SHM (iDefense Labs )
  
• iDefense Security Advisory 01.17.08: Multiple Vendor X Server TOG-CUP Extension (iDefense Labs )
  
• iDefense Security Advisory 01.17.08: Multiple Vendor X Server XFree86-Misc Exten (iDefense Labs )
  
• iDefense Security Advisory 01.17.08: Multiple Vendor X Server XInput Extension M (labs-no-reply@idefense.com)
  
• RHSA-2008:0029-9 XFree86 security update (Red Hat)
  
• RHSA-2008:0030-7 xorg-x11 security update (Red Hat)
  
• RHSA-2008:0031-8 xorg-x11-server security update (Red Hat)
  
• RHSA-2008:0064-5 libXfont security update (Red Hat)
  
• Sun Alert ID: 103192 A Security Vulnerability in the Solaris X Window System (X( (Sun)
  
• Sun Alert ID: 103200 Multiple Security Vulnerabilities in the Solaris X Server E (Sun)
  
• Sun Alert ID: 103205 Security Vulnerability in the Solaris X Server May Lead to (Sun)
  
• X.Org security advisory, January 17th, 2008 (X.Org)