SUSE-SU-2015:0403-1

Опубликовано: 10 фев. 2015

Источник: suse-cvrf

Описание

Security update for xorg-x11-server

xorg-x11-server was updated to fix one security issue.

This security issue was fixed:

CVE-2015-0255: Check string lenghts in XkbSetGeometry request (bnc#915810)

Список пакетов

SUSE Linux Enterprise Desktop 12

xorg-x11-server-7.6_1.15.2-21.1

xorg-x11-server-extra-7.6_1.15.2-21.1

SUSE Linux Enterprise Server 12

xorg-x11-server-7.6_1.15.2-21.1

xorg-x11-server-extra-7.6_1.15.2-21.1

SUSE Linux Enterprise Server for SAP Applications 12

xorg-x11-server-7.6_1.15.2-21.1

xorg-x11-server-extra-7.6_1.15.2-21.1

SUSE Linux Enterprise Software Development Kit 12

xorg-x11-server-sdk-7.6_1.15.2-21.1

Ссылки

https://www.suse.com/support/update/announcement/2015/suse-su-20150403-1/
Link for SUSE-SU-2015:0403-1
https://lists.suse.com/pipermail/sle-security-updates/2015-February/001261.html
E-Mail link for SUSE-SU-2015:0403-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/915810
SUSE Bug 915810
https://www.suse.com/security/cve/CVE-2015-0255/
SUSE CVE CVE-2015-0255 page

Описание

X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.

Затронутые продукты

SUSE Linux Enterprise Desktop 12:xorg-x11-server-7.6_1.15.2-21.1

SUSE Linux Enterprise Desktop 12:xorg-x11-server-extra-7.6_1.15.2-21.1

SUSE Linux Enterprise Server 12:xorg-x11-server-7.6_1.15.2-21.1

SUSE Linux Enterprise Server 12:xorg-x11-server-extra-7.6_1.15.2-21.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-0255.html
CVE-2015-0255
https://bugzilla.suse.com/915810
SUSE Bug 915810

SUSE-SU-2015:0403-1

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12

SUSE Linux Enterprise Server 12

SUSE Linux Enterprise Server for SAP Applications 12

SUSE Linux Enterprise Software Development Kit 12

Ссылки

Уязвимость: CVE-2015-0255

Описание

Затронутые продукты

Ссылки