SUSE-SA:2006:016: xorg-x11-server

High Nessus Plugin ID 21137


The remote host is missing a vendor-supplied security patch


The remote host is missing the patch for the advisory SUSE-SA:2006:016 (xorg-x11-server).

A programming flaw in the X.Org X Server allows local attackers to gain root access when the server is setuid root, as is the default in SUSE Linux 10.0. This flaw was spotted by the Coverity project.

Only SUSE Linux 10.0 is affected, older products do not include the problematic piece of code.

This problem is tracked by the Mitre CVE ID CVE-2006-0745.


Plugin Details

Severity: High

ID: 21137

File Name: suse_SA_2006_016.nasl

Version: $Revision: 1.4 $

Agent: unix

Published: 2006/03/23

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list