CIAC Bulletin P-304 is revised to add a link to HPSBUX02137 SSRT051024 rev.1 
- HP-UX Running Xserver Local Execution of Arbitrary Code, Privilege Elevation.
             __________________________________________________________

                       The U.S. Department of Energy
                   Computer Incident Advisory Capability
                           ___  __ __    _     ___
                          /       |     /_\   /
                          \___  __|__  /   \  \___
             __________________________________________________________

                             INFORMATION BULLETIN

                            XFree86 Security Update
                   [Red Hat Security Advisory RHSA-2005:329]

September 13, 2005 17:00 GMT                                      Number P-304
[REVISED 14 Sep 2005]
[REVISED 16 Sep 2005]
[REVISED 20 Sep 2005]
[REVISED 22 Sep 2005]
[REVISED 04 Oct 2005]
[REVISED 24 Oct 2005]
[REVISED 28 Oct 2005]
[REVISED 17 Nov 2005]
[REVISED 02 Dec 2005]
[REVISED 03 Aug 2006]
______________________________________________________________________________
PROBLEM:       A security vulnerability was discovered in the way XFree86 
               parses pixmap images. XFree86 is an open source implementation 
               of the X Window System. 
PLATFORM:      Red Hat Desktop (v. 4)
               Red Hat Enterprise Linux AS, ES, WS (v. 2.1 and v. 4) 
               Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor 
               Sun Solaris 8, 9, 10 (SPARC and x86 Platforms)
               Sun Java Desktop System Release 2
DAMAGE:        Several integer overflow bugs were found in in XFree86 that may 
               allow a user to gain elevated privileges by loading a specially 
               crafted pixmap image. 
SOLUTION:      Apply the available security updates. 
______________________________________________________________________________
VULNERABILITY  The risk is MEDIUM. A user must be enticed to open a malicious 
ASSESSMENT:    pixmap image. This can allow an attacker to gain elevated 
               privileges. 
______________________________________________________________________________
LINKS: 
 CIAC BULLETIN:      http://www.ciac.org/ciac/bulletins/p-304.shtml 
 ORIGINAL BULLETIN:  https://rhn.redhat.com/errata/RHSA-2005-329.html 
 ADDITIONAL LINKS:   https://rhn.redhat.com/errata/RHSA-2005-396.html
                     Sun Alert ID: 101926
                     http://sunsolve.sun.com/search/document.do?assetkey=
                     1-26-101926-1&searchclause=security
                     Debian Security Advisory DSA 816-1
                     http://www.us.debian.org/security/2005/dsa-816
                     Sun Alert ID: 101953
                     http://sunsolve.sun.com/search/printfriendly.do?
                     assetkey=1-26-101953-1
                     HPSBUX02137 SSRT051024 rev.1: See HP Subscription Service
 CVE:                http://www.cve.mitre.org/cgi-bin/cvename.cgi?name= 
                     CVE-2005-2495 
______________________________________________________________________________