Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 XFree86 GLX and DRI Screen Number Overflows Let Remote Users Crash the X Server
Categorie: Vulnerability
Posted: 2004-02-24 by ReCall
Views: 380
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: Two vulnerabilities were reported in XFree86. A remote user can cause the X server to crash.

It is reported that the GLX extension and Direct Rendering Infrastructure components not properly check the user-supplied screen number parameter. A remote user can send an invalid screen number value to trigger an array index boundary overflow [CVE: CAN-2004-0093] or an unsigned integer overflow [CVE: CAN-2004-0094]. The result is a segmentation fault, the report said.

The flaws reportedly reside in 'xf86dri.c' and 'glxcmds.c'.

Impact: A remote user can cause the target X server to crash.

Solution: No upstream solution was available at the time of this entry.
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=734

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES