« Sun Alert 102835... | Main | Sun Alert 102521... »
10 Mar 2007 Sun Alert 102714 Security Vulnerability With Integer Multiplication Within libXfont Affects Solaris X11 Servers
posted by security in Alerts
Product: Solaris 9 Operating System, Solaris 10 Operating System, Solaris 8 Operating System

The Xsun(1) server and Xorg(1) server are the X display servers for Version 11 of the X window system on Solaris.

There exists an overflow vulnerability when performing integer multiplication within the libXfont library, as used by the X11 display servers, that can cause a heap overflow while loading the fonts. This may allow a local unprivileged user to be able to execute arbitrary commands with elevated privileges or create a Denial of Service (DoS) to the display managers.

This issue is described in the following documents:

Avoidance: Patch, Workaround
State: Resolved
First released: 14-Nov-2006
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102714-1
Permalink | Comments [0]
Trackback URL: http://blogs.sun.com/security/entry/sun_alert_102714_security_vulnerability
Comments:

Post a Comment:

Name:
E-Mail:
URL:

Your Comment:

HTML Syntax: NOT allowed

« Sun Alert 102835... | Main | Sun Alert 102521... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« December 2009
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
  
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.