Synopsis: Important: xorg-x11 security update Issue date: 2008-06-11 CVE Names: CVE-2008-1377 CVE-2008-1379 CVE-2008-2360 CVE-2008-2361 An input validation flaw was discovered in X.org's Security and Record extensions. A malicious authorized client could exploit this issue to cause a denial of service (crash) or, potentially, execute arbitrary code with root privileges on the X.Org server. (CVE-2008-1377) Multiple integer overflow flaws were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service (crash) or, potentially, execute arbitrary code with root privileges on the X.Org server. (CVE-2008-2360, CVE-2008-2361) An input validation flaw was discovered in X.org's MIT-SHM extension. A client connected to the X.org server could read arbitrary server memory. This could result in the sensitive data of other users of the X.org server being disclosed. (CVE-2008-1379) SL 4.x SRPMS: xorg-x11-6.8.2-1.EL.33.0.4.src.rpm i386: xorg-x11-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-devel-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-doc-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-font-utils-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-libs-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-sdk-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-tools-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-twm-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-xauth-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-xdm-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Xdmx-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-xfs-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Xnest-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Xvfb-6.8.2-1.EL.33.0.4.i386.rpm x86_64: xorg-x11-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-devel-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-devel-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-doc-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-font-utils-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-libs-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-libs-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.33.0.4.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-sdk-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-tools-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-twm-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-xauth-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-xdm-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-Xdmx-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-xfs-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-Xnest-6.8.2-1.EL.33.0.4.x86_64.rpm xorg-x11-Xvfb-6.8.2-1.EL.33.0.4.x86_64.rpm -Connie Sieh -Troy Dawson