Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2016:3115-1

Опубликовано: 13 дек. 2016
Источник: suse-cvrf

Описание

Security update for xorg-x11-libXrender

This update for xorg-x11-libXrender fixes the following issues:

  • insufficient validation of data from the X server can cause out of boundary memory writes (bsc#1003002, CVE-2016-7949, CVE-2016-7950)

Список пакетов

SUSE Linux Enterprise Server 11 SP4
xorg-x11-libXrender-7.4-1.20.1
xorg-x11-libXrender-32bit-7.4-1.20.1
xorg-x11-libXrender-x86-7.4-1.20.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
xorg-x11-libXrender-7.4-1.20.1
xorg-x11-libXrender-32bit-7.4-1.20.1
xorg-x11-libXrender-x86-7.4-1.20.1
SUSE Linux Enterprise Software Development Kit 11 SP4
xorg-x11-libXrender-devel-7.4-1.20.1
xorg-x11-libXrender-devel-32bit-7.4-1.20.1

Ссылки

Описание

Multiple buffer overflows in the (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXrender before 0.9.10 allow remote X servers to trigger out-of-bounds write operations via vectors involving length fields.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXrender-32bit-7.4-1.20.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXrender-7.4-1.20.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXrender-x86-7.4-1.20.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libXrender-32bit-7.4-1.20.1
Ссылки

Описание

The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows remote X servers to trigger out-of-bounds write operations via vectors involving filter name lengths.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXrender-32bit-7.4-1.20.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXrender-7.4-1.20.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libXrender-x86-7.4-1.20.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libXrender-32bit-7.4-1.20.1
Ссылки
Уязвимость SUSE-SU-2016:3115-1