|
|
Subscribe / Log in / New account

Mageia alert MGASA-2018-0011 (X11 client libraries)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2018-0011: Updated X11 client libraries packages fix security vulnerability 


Date:
    	      Mon, 1 Jan 2018 16:51:07 +0100


Message-ID:
    	      <20180101155107.2B7889FD90@duvel.mageia.org>


MGASA-2018-0011 - Updated X11 client libraries packages fix security vulnerability

Publication date: 01 Jan 2018
URL: https://advisories.mageia.org/MGASA-2018-0011.html
Type: security
Affected Mageia releases: 5
CVE: CVE-2016-5407,
     CVE-2016-7942,
     CVE-2016-7943,
     CVE-2016-7944,
     CVE-2016-7945,
     CVE-2016-7946,
     CVE-2016-7947,
     CVE-2016-7948,
     CVE-2016-7949,
     CVE-2016-7950,
     CVE-2016-7951,
     CVE-2016-7952,
     CVE-2016-7953

Description:
The XvQueryAdaptors and XvQueryEncodings functions in X.org libXv before
1.0.11 allow remote X servers to trigger out-of-bounds memory access
operations via vectors involving length specifications in received data
(CVE-2016-5407).

The XGetImage function in X.org libX11 before 1.6.4 might allow remote X
servers to gain privileges via vectors involving image type and geometry,
which triggers out-of-bounds read operations (CVE-2016-7942).

The XListFonts function in X.org libX11 before 1.6.4 might allow remote X
servers to gain privileges via vectors involving length fields, which
trigger out-of-bounds write operations (CVE-2016-7943).

Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might
allow remote X servers to gain privileges via a length value of INT_MAX,
which triggers the client to stop reading data and get out of sync
(CVE-2016-7944).

Multiple integer overflows in X.org libXi before 1.7.7 allow remote X
servers to cause a denial of service (out-of-bounds memory access or
infinite loop) via vectors involving length fields (CVE-2016-7945).

X.org libXi before 1.7.7 allows remote X servers to cause a denial of
service (infinite loop) via vectors involving length fields
(CVE-2016-7946).

Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X
servers to trigger out-of-bounds write operations via a crafted response
(CVE-2016-7947).

X.org libXrandr before 1.5.1 allows remote X servers to trigger
out-of-bounds write operations by leveraging mishandling of reply data
(CVE-2016-7948).

Multiple buffer overflows in the XvQueryAdaptors and XvQueryEncodings
functions in X.org libXrender before 0.9.10 allow remote X servers to
trigger out-of-bounds write operations via vectors involving length fields
(CVE-2016-7949).

The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows
remote X servers to trigger out-of-bounds write operations via vectors
involving filter name lengths (CVE-2016-7950).

Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X
servers to trigger out-of-bounds memory access operations by leveraging
the lack of range checks (CVE-2016-7951).

X.org libXtst before 1.2.3 allows remote X servers to cause a denial of
service (infinite loop) via a reply in the XRecordStartOfData,
XRecordEndOfData, or XRecordClientDied category without a client sequence
and with attached data (CVE-2016-7952).

Buffer underflow in X.org libXvMC before 1.0.10 allows remote X servers to
have unspecified impact via an empty string (CVE-2016-7953).

References:
- https://bugs.mageia.org/show_bug.cgi?id=19530
- http://openwall.com/lists/oss-security/2016/10/04/4
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5407
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7942
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7943
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7944
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7945
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7946
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7947
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7948
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7949
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7950
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7951
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7952
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7953

SRPMS:
- 5/core/libx11-1.6.5-1.mga5
- 5/core/libxv-1.0.11-1.mga5
- 5/core/libxrender-0.9.10-1.mga5
- 5/core/libxtst-1.2.3-1.mga5
- 5/core/libxi-1.7.7-1.mga5
- 5/core/libxrandr-1.4.2-4.1.mga5
- 5/core/libxfixes-5.0.3-1.mga5
- 5/core/libxvmc-1.0.10-1.mga5
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds