Launchpad.net

CVE 2008-1377

The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record extension and the (3) SProcSecurityGenerateAuthorization function in the Security extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via requests with crafted length values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.

See the

CVE page on Mitre.org for more details.

References

IDEFENSE: 20080611 Multiple Vend...
MLIST: [xorg] 20080611 X.Org ...
CONFIRM: ftp://ftp.freedesktop....
DEBIAN: DSA-1595
MANDRIVA: MDVSA-2008:116
REDHAT: RHSA-2008:0502
REDHAT: RHSA-2008:0504
REDHAT: RHSA-2008:0512
SUNALERT: 238686
SUSE: SUSE-SA:2008:027
UBUNTU: USN-616-1
SECTRACK: 1020247
SECUNIA: 30627
SECUNIA: 30628
SECUNIA: 30629
SECUNIA: 30630
SECUNIA: 30637
SECUNIA: 30659
SECUNIA: 30664
SECUNIA: 30666
MANDRIVA: MDVSA-2008:115
REDHAT: RHSA-2008:0503
SECUNIA: 30671
CONFIRM: http://wiki.rpath.com/...
CONFIRM: https://issues.rpath.c...
CONFIRM: https://issues.rpath.c...
GENTOO: GLSA-200806-07
SECUNIA: 30715
SECUNIA: 30772
SECUNIA: 30809
CONFIRM: http://support.avaya.c...
SECUNIA: 30843
SECUNIA: 31109
SECUNIA: 32099
GENTOO: GLSA-200807-07
SECUNIA: 31025
SUSE: SUSE-SR:2008:019
APPLE: APPLE-SA-2009-02-12
SECUNIA: 33937
HP: HPSBUX02381
HP: SSRT080083
SECUNIA: 32545
VUPEN: ADV-2008-3000
CONFIRM: http://support.apple.c...
VUPEN: ADV-2008-1803
VUPEN: ADV-2008-1833
VUPEN: ADV-2008-1983
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20080620 rPSA-2008-020...
BUGTRAQ: 20080621 rPSA-2008-020...

Launchpad.net

CVE 2008-1377

Related bugs

References