Test ID:	1.3.6.1.4.1.25623.1.0.57630
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2006:199 (libx11)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libx11 announced via advisory MDKSA-2006:199. The Xinput module (modules/im/ximcp/imLcIm.c) in X.Org libX11 1.0.2 and 1.0.3 opens a file for reading twice using the same file descriptor, which causes a file descriptor leak that allows local users to read files specified by the XCOMPOSEFILE environment variable via the duplicate file descriptor. Updated packages have been patched to correct this issue. Affected: 2007.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2006:199 Risk factor : Medium CVSS Score: 2.1
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-5397 BugTraq ID: 20845 http://www.securityfocus.com/bid/20845 http://www.mandriva.com/security/advisories?name=MDKSA-2006:199 http://secunia.com/advisories/22642 http://secunia.com/advisories/22749 http://www.vupen.com/english/advisories/2006/4289 XForce ISS Database: libx11-xinput-information-disclosure(29956) https://exchange.xforce.ibmcloud.com/vulnerabilities/29956
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.