Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2018-3410

Опубликовано: 07 нояб. 2018
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2018-3410: xorg-x11-server security update (IMPORTANT)

[1.20.1-5.1]

  • CVE-2018-14665: Disable -logfile and -modulepath when running with elevated privileges

[1.20.1-5]

  • Call LeaveVT from xf86CrtcCloseScreen

[1.20.1-4]

  • Hide the modesetting driver's atomic ioctl support behind Option 'Atomic'

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

xorg-x11-server-Xdmx

1.20.1-5.1.el7

xorg-x11-server-Xephyr

1.20.1-5.1.el7

xorg-x11-server-Xnest

1.20.1-5.1.el7

xorg-x11-server-Xorg

1.20.1-5.1.el7

xorg-x11-server-Xvfb

1.20.1-5.1.el7

xorg-x11-server-Xwayland

1.20.1-5.1.el7

xorg-x11-server-common

1.20.1-5.1.el7

xorg-x11-server-devel

1.20.1-5.1.el7

xorg-x11-server-source

1.20.1-5.1.el7

Oracle Linux x86_64

xorg-x11-server-Xdmx

1.20.1-5.1.el7

xorg-x11-server-Xephyr

1.20.1-5.1.el7

xorg-x11-server-Xnest

1.20.1-5.1.el7

xorg-x11-server-Xorg

1.20.1-5.1.el7

xorg-x11-server-Xvfb

1.20.1-5.1.el7

xorg-x11-server-Xwayland

1.20.1-5.1.el7

xorg-x11-server-common

1.20.1-5.1.el7

xorg-x11-server-devel

1.20.1-5.1.el7

xorg-x11-server-source

1.20.1-5.1.el7

Связанные CVE

CVE-2018-14665

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2018-14665

CVSS3: 6.6
ubuntu
около 7 лет назад

A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.

redhat логотип

CVE-2018-14665

CVSS3: 6.6
redhat
около 7 лет назад

A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.

nvd логотип

CVE-2018-14665

CVSS3: 6.6
nvd
около 7 лет назад

A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.

debian логотип

CVE-2018-14665

CVSS3: 6.6
debian
около 7 лет назад

A flaw was found in xorg-x11-server before 1.20.3. An incorrect permis ...

suse-cvrf логотип

openSUSE-SU-2018:3800-1

suse-cvrf
почти 7 лет назад

Security update for xorg-x11-server