xorg-x11-server-1.20.1-5.1.el7

エラータID: AXSA:2019-3538:01

Release date: 
Friday, February 15, 2019 - 12:22
Subject: 
xorg-x11-server-1.20.1-5.1.el7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

Security Fix(es):

* xorg-x11-server: Incorrect permission check in Xorg X server allows for privilege escalation (CVE-2018-14665)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Asianux would like to thank Narendra Shinde for reporting this issue.

CVE-2018-14665
A flaw was found in xorg-x11-server before 1.20.3. An incorrect
permission check for -modulepath and -logfile options when starting
Xorg. X server allows unprivileged users with the ability to log in to
the system via physical console to escalate their privileges and run
arbitrary code under root privileges.

Solution: 

Update packages.

CVEs: 
CVE-2018-14665
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.
Additional Info: 

N/A

Download: 

SRPMS
  1. xorg-x11-server-1.20.1-5.1.el7.src.rpm
    MD5: 55787b852fb76c79ae405e143438f6b4
    SHA-256: 449f274c743752b64db5f5c82c32a089aa970ce2a9b7aeee78ae68b975ca80fd
    Size: 5.89 MB

Asianux Server 7 for x86_64
  1. xorg-x11-server-common-1.20.1-5.1.el7.x86_64.rpm
    MD5: 4f9fe55a29534f503e4775af9118e4fc
    SHA-256: 9e807d1a95fac08db0e9c11494b7220d57ae67eb210075be5e3cda514cdb9b30
    Size: 53.00 kB
  2. xorg-x11-server-Xephyr-1.20.1-5.1.el7.x86_64.rpm
    MD5: 4f340988fcca5ef1dcf8da19ab218fc1
    SHA-256: 007fbcbd5f897c173a9fcba8c1f78275dd164e3c38372bdc7f27693dcd1999ce
    Size: 0.98 MB
  3. xorg-x11-server-Xorg-1.20.1-5.1.el7.x86_64.rpm
    MD5: e694cb2286098a011ea6e8ac641cf2b4
    SHA-256: 369a2068ee6b61eb318a078778f8c959b35677b920ea1032c50f0bd1d430ab0b
    Size: 1.45 MB
  4. xorg-x11-server-Xwayland-1.20.1-5.1.el7.x86_64.rpm
    MD5: 2357090a7d975687a49ef2d279bdf22d
    SHA-256: 7ac90d86d18010c015d4e900513d585f14605065b3a7a49296f27d00618193e0
    Size: 946.94 kB