Scientific Linux: xscreensaver Critical Update CVE-2007-1859 Network Outage

May 09, 2007 •

LinuxSecurity Advisories

1 min read

Topics Covered

security advisory critical local attack xscreensaver network outage Scientific Linux

Important: xscreensaver security update

Date: Wed, 9 May 2007 15:18:42 -0500
Reply-To: Connie Sieh 
Sender: Security Errata for Scientific Linux

From: Connie Sieh 
Subject: Security ERRATA for SL4 xscreensaver i386/x86_64
Comments: To: scientific 

Synopsis: Important: xscreensaver security update
Issue date: 2007-05-02
CVE Names: CVE-2007-1859

Alex Yamauchi discovered a flaw in the way XScreenSaver verifies user
passwords. When a system is using a remote directory service for login
credentials, a local attacker may be able to cause a network outage causing
XScreenSaver to crash, unlocking the screen. (CVE-2007-1859)

SRPMS:
 	xscreensaver-4.18-5.rhel4.14.src.rpm

i386:
 	xscreensaver-4.18-5.rhel4.14.i386.rpm

x86_64:
 	xscreensaver-4.18-5.rhel4.14.x86_64.rpm

-Connie Sieh
-Troy Dawson

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Your message here

Scientific Linux: xscreensaver Critical Update CVE-2007-1859 Network Outage

Topics Covered

Search Advisories & Updates

Recent Searches

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Scientific Linux: xscreensaver Critical Update CVE-2007-1859 Network Outage

Topics Covered

Search Advisories & Updates

Recent Searches

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!