HOME > ADVISORIES


   ADVISORIES

CERT-In Advisory CIAD-2006-31
Multiple vulnerabilities in linux

Original issue date: September 14, 2006

Severity Rating: High

Systems Affected

  • ncompress version 4.2.4 and prior
  • X.Org X11 versions 6.7.0 through 7.1
  • X.Org libXfont versions 1.2.x
  • XFree86 version 4.6.0 and prior

Overview

Multiple vulnerabilities have been reported in linux which could be exploited by remote attackers to execute arbitrary commands.

Description

1. ncompress "decompress ()" Datastream Buffer Overflow Vulnerability (CVE-2006-1168)

A vulnerability has been reported in ncompress package due to error in function decompress() which do bounds checking while decompressing a specially crafted datastream. This vulnerability could be exploited by remote attacker to execute arbitrary code on the affected system or denial of service attack.

2. X Server CID-keyed Fonts 'scan_cidfont()' Integer Overflow Vulnerability (CVE-2006-3740)

An integer overflow vulnerability has been reported in 'scan_cidfont()' function in the X.Org and XFree86 X server in the way it process CID font file. This could allow an local attacker to execute arbitrary code with privileges of the root on X server.

3. X Server CID-keyed Fonts 'CIDAFM()' Integer Overflow Vulnerability (CVE-2006-3739)

An integer overflow vulnerability has been reported in the 'CIDAFM()' function in the X.Org and XFree86 X server in the way it process CID font file. This could allow a local attacker to execute arbitrary code with privileges of the root on X server.

Solution

Apply appropriate patches suggested by the vendor.

References

Redhat
http://rhn.redhat.com/errata/RHSA-2006-0663.html
https://rhn.redhat.com/errata/RHSA-2006-0665.html

FrSIRT
http://www.frsirt.com/english/advisories/2006/3234
http://www.frsirt.com/english/advisories/2006/3581

SuSe
http://www.novell.com/linux/security/advisories/2006_20_sr.html

iDefense
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=412
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=411

CVE Name

CVE-2006-1168
CVE-2006-3740
CVE-2006-3739

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information


Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003