Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:0246-1

Опубликовано: 26 янв. 2018
Источник: suse-cvrf

Описание

Security update for xorg-x11-libs

This update for xorg-x11-libs fixes several issues.

These security issues were fixed:

  • CVE-2017-16612: Heap overflows due to an integer overflow while parsing images and a signedness issue while parsing comments (bsc#1065386).
  • CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads (bsc#1054285)
  • CVE-2017-13722: Malformed PCF file could have caused DoS or leak information (bsc#1049692)
  • Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects (bsc#1050459)

Список пакетов

SUSE Linux Enterprise Server 11 SP4
xorg-x11-libs-7.4-8.26.50.5.3
xorg-x11-libs-32bit-7.4-8.26.50.5.3
xorg-x11-libs-x86-7.4-8.26.50.5.3
SUSE Linux Enterprise Server for SAP Applications 11 SP4
xorg-x11-libs-7.4-8.26.50.5.3
xorg-x11-libs-32bit-7.4-8.26.50.5.3
xorg-x11-libs-x86-7.4-8.26.50.5.3
SUSE Linux Enterprise Software Development Kit 11 SP4
xorg-x11-devel-7.4-8.26.50.5.3
xorg-x11-devel-32bit-7.4-8.26.50.5.3

Ссылки

Описание

In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information disclosure or a crash (denial of service). This occurs because '\0' characters are incorrectly skipped in situations involving ? characters.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-32bit-7.4-8.26.50.5.3
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-7.4-8.26.50.5.3
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-x86-7.4-8.26.50.5.3
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libs-32bit-7.4-8.26.50.5.3
Ссылки

Описание

In the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2 and 2.x before 2.0.2, a missing boundary check (for PCF files) could be used by local attackers authenticated to an Xserver for a buffer over-read, for information disclosure or a crash of the X server.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-32bit-7.4-8.26.50.5.3
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-7.4-8.26.50.5.3
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-x86-7.4-8.26.50.5.3
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libs-32bit-7.4-8.26.50.5.3
Ссылки

Описание

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-32bit-7.4-8.26.50.5.3
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-7.4-8.26.50.5.3
SUSE Linux Enterprise Server 11 SP4:xorg-x11-libs-x86-7.4-8.26.50.5.3
SUSE Linux Enterprise Server for SAP Applications 11 SP4:xorg-x11-libs-32bit-7.4-8.26.50.5.3
Ссылки
Уязвимость SUSE-SU-2018:0246-1