Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:199: libx11 Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the libx11 package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:199 (libx11).
The Xinput module (modules/im/ximcp/imLcIm.c) in X.Org libX11 1.0.2 and
1.0.3 opens a file for reading twice using the same file descriptor,
which causes a file descriptor leak that allows local users to read
files specified by the XCOMPOSEFILE environment variable via the
duplicate file descriptor.
Updated packages have been patched to correct this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:199
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.