Описание
Security update for xorg-x11-libXv
This update for xorg-x11-libXv fixes the following issues:
- insufficient validation of data from the X server can cause memory corruption (bsc#1003017, CVE-2016-5407)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
xorg-x11-libXv-7.4-1.20.1
xorg-x11-libXv-32bit-7.4-1.20.1
xorg-x11-libXv-x86-7.4-1.20.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
xorg-x11-libXv-7.4-1.20.1
xorg-x11-libXv-32bit-7.4-1.20.1
xorg-x11-libXv-x86-7.4-1.20.1
SUSE Linux Enterprise Software Development Kit 11 SP4
xorg-x11-libXv-devel-7.4-1.20.1
xorg-x11-libXv-devel-32bit-7.4-1.20.1
Ссылки
- Link for SUSE-SU-2016:3110-1
- E-Mail link for SUSE-SU-2016:3110-1
- SUSE Security Ratings
- SUSE Bug 1003017
- SUSE CVE CVE-2016-5407 page
Описание
The (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXv before 1.0.11 allow remote X servers to trigger out-of-bounds memory access operations via vectors involving length specifications in received data.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXv-32bit-7.4-1.20.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXv-7.4-1.20.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXv-x86-7.4-1.20.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libXv-32bit-7.4-1.20.1
Ссылки
- CVE-2016-5407
- SUSE Bug 1003017
- SUSE Bug 1123148