Описание
Security update for xorg-x11-libX11
This update for xorg-x11-libX11 fixes the following issues:
- a regression introduced by the security fix for CVE-2013-1997 (bnc#824294). Keyboard mappings for special characters on Non-English keyboards might have been broken. (bnc#1019642)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
xorg-x11-libX11-7.4-5.11.68.1
xorg-x11-libX11-32bit-7.4-5.11.68.1
xorg-x11-libX11-x86-7.4-5.11.68.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
xorg-x11-libX11-7.4-5.11.68.1
xorg-x11-libX11-32bit-7.4-5.11.68.1
xorg-x11-libX11-x86-7.4-5.11.68.1
SUSE Linux Enterprise Software Development Kit 11 SP4
xorg-x11-libX11-devel-7.4-5.11.68.1
xorg-x11-libX11-devel-32bit-7.4-5.11.68.1
Ссылки
- Link for SUSE-SU-2017:0644-1
- E-Mail link for SUSE-SU-2017:0644-1
- SUSE Security Ratings
- SUSE Bug 1019642
- SUSE CVE CVE-2013-1997 page
Описание
Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libX11-32bit-7.4-5.11.68.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libX11-7.4-5.11.68.1
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libX11-x86-7.4-5.11.68.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libX11-32bit-7.4-5.11.68.1
Ссылки
- CVE-2013-1997
- SUSE Bug 815451
- SUSE Bug 821664
- SUSE Bug 824294