Fedora 7 : xorg-x11-server-1.3.0.0-15.fc7 (2008-0831)

This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

CVE-2007-5760: XFree86-Misc Extension Invalid Array Index
Vulnerability CVE-2007-5958: Xorg / XFree86 file existence disclosure
vulnerability CVE-2007-6427: XInput Extension Memory Corruption
Vulnerability CVE-2007-6428: TOG-CUP Extension Memory Corruption
Vulnerability CVE-2007-6429: EVI and MIT-SHM Extension Integer
Overflow Vulnerability CVE-2008-0006: PCF Font Vulnerability - this
patch isn't strictly required with new version of libXfont.

This contains ajax's fixes for the MITSHM patch.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=391841
https://bugzilla.redhat.com/show_bug.cgi?id=413721
https://bugzilla.redhat.com/show_bug.cgi?id=413741
https://bugzilla.redhat.com/show_bug.cgi?id=413791
https://bugzilla.redhat.com/show_bug.cgi?id=413811
https://bugzilla.redhat.com/show_bug.cgi?id=414031
https://bugzilla.redhat.com/show_bug.cgi?id=429125
http://www.nessus.org/u?50405a6a

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 30076 (fedora_2008-0831.nasl)

Bugtraq ID: 27350
27351
27352
27353
27354
27355
27356

CVE ID: CVE-2007-5760
CVE-2007-5958
CVE-2007-6427
CVE-2007-6428
CVE-2007-6429
CVE-2008-0006

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now