Debians sikkerhedsbulletin

DSA-443-1 xfree86 -- flere sårbarheder

Rapporteret den:

19. feb 2004

Berørte pakker:

Sårbar:

Referencer i sikkerhedsdatabaser:

I Bugtraq-databasen (hos SecurityFocus): BugTraq-id 9636, BugTraq-id 9652, BugTraq-id 9655, BugTraq-id 9701.
I Mitres CVE-ordbog: CVE-2003-0690, CVE-2004-0083, CVE-2004-0084, CVE-2004-0106, CVE-2004-0093, CVE-2004-0094.

Yderligere oplysninger:

Flere sårbarheder er opdaget i XFree86. Rettelserne er anført herunder med identifikationer fra projektet Common Vulnerabilities and Exposures (CVE):

CAN-2004-0083:
Bufferoverløb i funktionen ReadFontAlias i filen dirfile.c fra XFree86 4.1.0 til 4.3.0 gør det muligt for lokale brugere og fjernangribere at udføre vilkårlig kode via en skrifttypealiasfil (font.alias) med et langt "token". Dette er ikke den samme sårbarhed som CAN-2004-0084.
CAN-2004-0084:
Bufferoverløb i funktionen ReadFontAlias i XFree86 4.1.0 til 4.3.0, ved anvendelse af funktionen CopyISOLatin1Lowered, gør det muligt for lokale og fjernautentificerede brugere at udføre vilkårlig kode via en misdannet post i skrifttypealiasfilen (font.alias). Dette er ikke den samme sårbarhed som CAN-2004-0083.
CAN-2004-0106:
Forskellige yderligere fejl i XFree86s håndtering af skrifttypefiler.
CAN-2003-0690:
xdm kontroller ikke hvorvidt funktionskaldet pam_setcred lykkes, hvilket kan gøre det muligt for angribere at opnå root-rettigheder ved at udløse fejltilstande i PAM-moduler, som påvist i visse opsætninger af MITs modul pam_krb5.
CAN-2004-0093, CAN-2004-0094:
Lammelsesangreb mod X-serveren begået af klienter som anvender GLX-udvidelsen og "Direct Rendering Infrastructure" er mulige på grund af uverificerede klientdata (array-indeks der går ud over grænserne [CAN-2004-0093] og heltalsfortegnsfejl [CAN-2004-0094]).

Udnyttelse af CAN-2004-0083, CAN-2004-0084, CAN-2004-0106, CAN-2004-0093 og CAN-2004-0094 kræver en forbindelse til X-serveren. I Debian startes X-serveren af display-managere som standard med en opsætning, der kun tillader lokale tilslutninger, men hvis opsætningen er ændret for at muliggøre fjerntilslutninger, eller X-serveren startes på anden måde, kan disse fejl fjernudnyttes. Da X-serveren normalt kører med root-rettigheder, kan disse fejl potentielt udnyttes til at opnå root-rettigheder.

På nuværende tidspunkt er der ingen kendte angrebformer i forbindelse med CAN-2003-0690.

I den stabile distribution (woody) er disse problemer rettet i version 4.1.0-16woody3.

I den ustabile distribution (sid) er disse problemer rettet i version 4.3.0-2.

Vi anbefaler at du opdaterer din xfree86-pakke.

Rettet i:

Debian GNU/Linux 3.0 (woody)

Kildekode:: http://security.debian.org/pool/updates/main/x/xfree86/xfree86_4.1.0-16woody3.dsc; http://security.debian.org/pool/updates/main/x/xfree86/xfree86_4.1.0-16woody3.diff.gz; http://security.debian.org/pool/updates/main/x/xfree86/xfree86_4.1.0.orig.tar.gz
Arkitekturuafhængig komponent:: http://security.debian.org/pool/updates/main/x/xfree86/x-window-system_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-100dpi-transcoded_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-100dpi_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-75dpi-transcoded_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-75dpi_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-base-transcoded_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-base_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-cyrillic_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-pex_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfonts-scalable_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfree86-common_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlib6g-dev_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlib6g_4.1.0-16woody3_all.deb; http://security.debian.org/pool/updates/main/x/xfree86/xspecs_4.1.0-16woody3_all.deb
Alpha:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3-dbg_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_alpha.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_alpha.deb
ARM:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_arm.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_arm.deb
Intel IA-32:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3-dbg_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_i386.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_i386.deb
Intel IA-64:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3-dbg_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_ia64.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_ia64.deb
HPPA:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_hppa.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_hppa.deb
Motorola 680x0:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_m68k.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_m68k.deb
Big endian MIPS:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody2_mips.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody2_mips.deb
Little endian MIPS:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody2_mipsel.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody2_mipsel.deb
PowerPC:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3-dbg_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_powerpc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_powerpc.deb
IBM S/390:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_s390.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_s390.deb
Sun Sparc:: http://security.debian.org/pool/updates/main/x/xfree86/lbxproxy_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps-dev_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libdps1-dbg_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dbg_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw6-dev_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dbg_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/libxaw7-dev_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/proxymngr_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/twm_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/x-window-system-core_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xbase-clients_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xdm_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfs_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xfwp_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa-dev_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibmesa3-dbg_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa-dev_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibosmesa3-dbg_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dbg_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-dev_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xlibs-pic_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xmh_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xnest_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xprt_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-common_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xserver-xfree86_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xterm_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xutils_4.1.0-16woody3_sparc.deb; http://security.debian.org/pool/updates/main/x/xfree86/xvfb_4.1.0-16woody3_sparc.deb

MD5-kontrolsummer for de listede filer findes i den originale sikkerhedsbulletin.