ELSA-2014-1982

ELSA-2014-1982 - xorg-x11-server security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2014-12-11

Description

[1.1.1-48.107.0.1.el5_11]
- Added oracle-enterprise-detect.patch
- Replaced 'Red Hat' in spec file

[1.1.1-48.107]
- CVE-2014-8091 denial of service due to unchecked malloc in client
authentication (#1168680)
- CVE-2014-8092 integer overflow in X11 core protocol requests when
calculating memory needs for requests (#1168684)
- CVE-2014-8097 out of bounds access due to not validating length or offset
values in DBE extension (#1168705)
- CVE-2014-8095 out of bounds access due to not validating length or offset
values in XInput extension (#1168694)
- CVE-2014-8096 out of bounds access due to not validating length or offset
values in XC-MISC extension(#1168700)
- CVE-2014-8099 out of bounds access due to not validating length or offset
values in XVideo extension (#1168710)
- CVE-2014-8100 out of bounds access due to not validating length or offset
values in Render extension (#1168711)
- CVE-2014-8102 out of bounds access due to not validating length or offset
values in XFixes extension (#1168714)
- CVE-2014-8101 out of bounds access due to not validating length or offset
values in RandR extension (#1168713)
- CVE-2014-8093 xorg-x11-server: integer overflow in GLX extension requests
when calculating memory needs for requests (#1168688)
- CVE-2014-8098 xorg-x11-server: out of bounds access due to not validating
length or offset values in GLX extension (#1168707)

[1.1.1-48.104]
- xserver-1.1.1-randr-config-timestamps.patch: Backport timestamp comparison
fix from upstream RANDR code (#1006076)

[1.1.1-48.103]
- CVE-2013-6424: Fix OOB in trapezoid rasterization

Related CVEs

CVE-2014-8095

CVE-2014-8097

CVE-2014-8099

CVE-2014-8091

CVE-2014-8092

CVE-2014-8098

CVE-2014-8100

CVE-2014-8101

CVE-2014-8093

CVE-2014-8096

CVE-2014-8102

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 5 (i386)	xorg-x11-server-1.1.1-48.107.0.1.el5_11.src.rpm	5a60f18bb5b96f7c7370d6c1478abb7c6c8f0058b44277d237b96c8fcea2812b	-	ol5_i386_latest
	xorg-x11-server-1.1.1-48.107.0.1.el5_11.src.rpm	5a60f18bb5b96f7c7370d6c1478abb7c6c8f0058b44277d237b96c8fcea2812b	-	ol5_u11_i386_patch
	xorg-x11-server-Xdmx-1.1.1-48.107.0.1.el5_11.i386.rpm	7bb8b23b7d8c8dee39d722a847f6fd27fa5ad35cb21e2393c7fabac2f77bac58	-	ol5_i386_latest
	xorg-x11-server-Xdmx-1.1.1-48.107.0.1.el5_11.i386.rpm	7bb8b23b7d8c8dee39d722a847f6fd27fa5ad35cb21e2393c7fabac2f77bac58	-	ol5_u11_i386_patch
	xorg-x11-server-Xephyr-1.1.1-48.107.0.1.el5_11.i386.rpm	284f341def816bd92a1d371e301cefc721734c9d26a9096b338b3db44e9fb0be	-	ol5_i386_latest
	xorg-x11-server-Xephyr-1.1.1-48.107.0.1.el5_11.i386.rpm	284f341def816bd92a1d371e301cefc721734c9d26a9096b338b3db44e9fb0be	-	ol5_u11_i386_patch
	xorg-x11-server-Xnest-1.1.1-48.107.0.1.el5_11.i386.rpm	bc28d87e39ed03457b82dcf86f02428ba60e00ee3e80b2b0031e6a9f9ff0cfea	-	ol5_i386_latest
	xorg-x11-server-Xnest-1.1.1-48.107.0.1.el5_11.i386.rpm	bc28d87e39ed03457b82dcf86f02428ba60e00ee3e80b2b0031e6a9f9ff0cfea	-	ol5_u11_i386_patch
	xorg-x11-server-Xorg-1.1.1-48.107.0.1.el5_11.i386.rpm	bbb2b9a421dfba95ae9ecf76e7e17f242171fe80e5b3e60d28b861630157fb23	-	ol5_i386_latest
	xorg-x11-server-Xorg-1.1.1-48.107.0.1.el5_11.i386.rpm	bbb2b9a421dfba95ae9ecf76e7e17f242171fe80e5b3e60d28b861630157fb23	-	ol5_u11_i386_patch
	xorg-x11-server-Xvfb-1.1.1-48.107.0.1.el5_11.i386.rpm	c170b4fa862ade339ed4b665571267ca3fc2e32f08f76a96c0f45366e3813bf2	-	ol5_i386_latest
	xorg-x11-server-Xvfb-1.1.1-48.107.0.1.el5_11.i386.rpm	c170b4fa862ade339ed4b665571267ca3fc2e32f08f76a96c0f45366e3813bf2	-	ol5_u11_i386_patch
	xorg-x11-server-Xvnc-source-1.1.1-48.107.0.1.el5_11.i386.rpm	96edecd5474f1e6859e291869775265287551b0cdaa8000f2802a55b1cfff067	-	ol5_i386_latest
	xorg-x11-server-Xvnc-source-1.1.1-48.107.0.1.el5_11.i386.rpm	96edecd5474f1e6859e291869775265287551b0cdaa8000f2802a55b1cfff067	-	ol5_u11_i386_patch
	xorg-x11-server-sdk-1.1.1-48.107.0.1.el5_11.i386.rpm	746641401931de764eef2632aade8d0b4ec7819b768c1db0402424cf74d454fe	-	ol5_i386_latest
	xorg-x11-server-sdk-1.1.1-48.107.0.1.el5_11.i386.rpm	746641401931de764eef2632aade8d0b4ec7819b768c1db0402424cf74d454fe	-	ol5_u11_i386_patch
Oracle Linux 5 (ia64)	xorg-x11-server-1.1.1-48.107.0.1.el5_11.src.rpm	5a60f18bb5b96f7c7370d6c1478abb7c6c8f0058b44277d237b96c8fcea2812b	-	ol5_ia64_latest
	xorg-x11-server-1.1.1-48.107.0.1.el5_11.src.rpm	5a60f18bb5b96f7c7370d6c1478abb7c6c8f0058b44277d237b96c8fcea2812b	-	ol5_u11_ia64_patch
	xorg-x11-server-Xdmx-1.1.1-48.107.0.1.el5_11.ia64.rpm	20d7577833f05c1d524c9fb5af18fa9fcd7f44783c440608c6e6924318d91d60	-	ol5_ia64_latest
	xorg-x11-server-Xdmx-1.1.1-48.107.0.1.el5_11.ia64.rpm	20d7577833f05c1d524c9fb5af18fa9fcd7f44783c440608c6e6924318d91d60	-	ol5_u11_ia64_patch
	xorg-x11-server-Xephyr-1.1.1-48.107.0.1.el5_11.ia64.rpm	af4c6ac1ceda38d379a620eabce425562589dcec80cf1754a8b68b92e2ac691c	-	ol5_ia64_latest
	xorg-x11-server-Xephyr-1.1.1-48.107.0.1.el5_11.ia64.rpm	af4c6ac1ceda38d379a620eabce425562589dcec80cf1754a8b68b92e2ac691c	-	ol5_u11_ia64_patch
	xorg-x11-server-Xnest-1.1.1-48.107.0.1.el5_11.ia64.rpm	4e137ad7e2621198ee42a250641e15e757f592f4a569f5d47b77049ae5f9a223	-	ol5_ia64_latest
	xorg-x11-server-Xnest-1.1.1-48.107.0.1.el5_11.ia64.rpm	4e137ad7e2621198ee42a250641e15e757f592f4a569f5d47b77049ae5f9a223	-	ol5_u11_ia64_patch
	xorg-x11-server-Xorg-1.1.1-48.107.0.1.el5_11.ia64.rpm	5bd29b00d67eea292fe4419059f76e8d71bc101fcca632a75a6c4138c4364437	-	ol5_ia64_latest
	xorg-x11-server-Xorg-1.1.1-48.107.0.1.el5_11.ia64.rpm	5bd29b00d67eea292fe4419059f76e8d71bc101fcca632a75a6c4138c4364437	-	ol5_u11_ia64_patch
	xorg-x11-server-Xvfb-1.1.1-48.107.0.1.el5_11.ia64.rpm	7923da176a71a1f5e7f8e33ac55c9c23a954280b8de6ad1f0dbdffc3075f7347	-	ol5_ia64_latest
	xorg-x11-server-Xvfb-1.1.1-48.107.0.1.el5_11.ia64.rpm	7923da176a71a1f5e7f8e33ac55c9c23a954280b8de6ad1f0dbdffc3075f7347	-	ol5_u11_ia64_patch
	xorg-x11-server-Xvnc-source-1.1.1-48.107.0.1.el5_11.ia64.rpm	e405b9915a42b15f4c9020b43d06ec0c103aa6f970a43d84567a571d0cea7d7f	-	ol5_ia64_latest
	xorg-x11-server-Xvnc-source-1.1.1-48.107.0.1.el5_11.ia64.rpm	e405b9915a42b15f4c9020b43d06ec0c103aa6f970a43d84567a571d0cea7d7f	-	ol5_u11_ia64_patch
	xorg-x11-server-sdk-1.1.1-48.107.0.1.el5_11.ia64.rpm	51d6a149c56ae2eb67b1f2c84ee0a1c827b8db2f0e350972e1e22f0441064c90	-	ol5_ia64_latest
	xorg-x11-server-sdk-1.1.1-48.107.0.1.el5_11.ia64.rpm	51d6a149c56ae2eb67b1f2c84ee0a1c827b8db2f0e350972e1e22f0441064c90	-	ol5_u11_ia64_patch
Oracle Linux 5 (x86_64)	xorg-x11-server-1.1.1-48.107.0.1.el5_11.src.rpm	5a60f18bb5b96f7c7370d6c1478abb7c6c8f0058b44277d237b96c8fcea2812b	-	ol5_u11_x86_64_patch
	xorg-x11-server-1.1.1-48.107.0.1.el5_11.src.rpm	5a60f18bb5b96f7c7370d6c1478abb7c6c8f0058b44277d237b96c8fcea2812b	-	ol5_x86_64_latest
	xorg-x11-server-Xdmx-1.1.1-48.107.0.1.el5_11.x86_64.rpm	33feb89b43b38bf953deec07cfbf67e6c7b3368eeb3918a2568c0623782caa11	-	ol5_u11_x86_64_patch
	xorg-x11-server-Xdmx-1.1.1-48.107.0.1.el5_11.x86_64.rpm	33feb89b43b38bf953deec07cfbf67e6c7b3368eeb3918a2568c0623782caa11	-	ol5_x86_64_latest
	xorg-x11-server-Xephyr-1.1.1-48.107.0.1.el5_11.x86_64.rpm	578c116ccff90762f511b65deb40eabb189dc1315097b8acccdd6e04a30bc283	-	ol5_u11_x86_64_patch
	xorg-x11-server-Xephyr-1.1.1-48.107.0.1.el5_11.x86_64.rpm	578c116ccff90762f511b65deb40eabb189dc1315097b8acccdd6e04a30bc283	-	ol5_x86_64_latest
	xorg-x11-server-Xnest-1.1.1-48.107.0.1.el5_11.x86_64.rpm	af5f8129f56d988f53b6a199e6b5337e6f3a1090d9c65f5ebbb0af0f1854eb31	-	ol5_u11_x86_64_patch
	xorg-x11-server-Xnest-1.1.1-48.107.0.1.el5_11.x86_64.rpm	af5f8129f56d988f53b6a199e6b5337e6f3a1090d9c65f5ebbb0af0f1854eb31	-	ol5_x86_64_latest
	xorg-x11-server-Xorg-1.1.1-48.107.0.1.el5_11.x86_64.rpm	7c0ca8b34b34e031f13ace26907530e03b76afbfde008b5c8e930b0b93688541	-	ol5_u11_x86_64_patch
	xorg-x11-server-Xorg-1.1.1-48.107.0.1.el5_11.x86_64.rpm	7c0ca8b34b34e031f13ace26907530e03b76afbfde008b5c8e930b0b93688541	-	ol5_x86_64_latest
	xorg-x11-server-Xvfb-1.1.1-48.107.0.1.el5_11.x86_64.rpm	0b47ccbd1333d65a5b15ae2dec3022b52946d4e724c69bca5c366becaa8b1f5b	-	ol5_u11_x86_64_patch
	xorg-x11-server-Xvfb-1.1.1-48.107.0.1.el5_11.x86_64.rpm	0b47ccbd1333d65a5b15ae2dec3022b52946d4e724c69bca5c366becaa8b1f5b	-	ol5_x86_64_latest
	xorg-x11-server-Xvnc-source-1.1.1-48.107.0.1.el5_11.x86_64.rpm	4a18d04beaff17918beb40e849536474ace0e5198dd6b75d8223b9080f4d93c8	-	ol5_u11_x86_64_patch
	xorg-x11-server-Xvnc-source-1.1.1-48.107.0.1.el5_11.x86_64.rpm	4a18d04beaff17918beb40e849536474ace0e5198dd6b75d8223b9080f4d93c8	-	ol5_x86_64_latest
	xorg-x11-server-sdk-1.1.1-48.107.0.1.el5_11.x86_64.rpm	a62029a2296b5810826515ba430ffcd140adf23443ce53d964106b0c7ae8514e	-	ol5_u11_x86_64_patch
	xorg-x11-server-sdk-1.1.1-48.107.0.1.el5_11.x86_64.rpm	a62029a2296b5810826515ba430ffcd140adf23443ce53d964106b0c7ae8514e	-	ol5_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team