openSUSE-SU-2020:1370-1

Опубликовано: 07 сент. 2020

Источник: suse-cvrf

Описание

Security update for libX11

This update for libX11 fixes the following issues:

CVE-2020-14363: Fix an integer overflow in init_om() (bsc#1175239).

This update was imported from the SUSE:SLE-15:Update update project.

Список пакетов

openSUSE Leap 15.2

libX11-6-1.6.5-lp152.5.9.1

libX11-6-32bit-1.6.5-lp152.5.9.1

libX11-data-1.6.5-lp152.5.9.1

libX11-devel-1.6.5-lp152.5.9.1

libX11-devel-32bit-1.6.5-lp152.5.9.1

libX11-xcb1-1.6.5-lp152.5.9.1

libX11-xcb1-32bit-1.6.5-lp152.5.9.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IOZDBASQU5F6WB6XA5TE34NSNFRLX63O/
E-Mail link for openSUSE-SU-2020:1370-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1175239
SUSE Bug 1175239
https://www.suse.com/security/cve/CVE-2020-14363/
SUSE CVE CVE-2020-14363 page

Описание

An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to cause an application compiled with libX11 to crash, or in some cases, result in arbitrary code execution. The highest threat from this flaw is to confidentiality, integrity as well as system availability.

Затронутые продукты

openSUSE Leap 15.2:libX11-6-1.6.5-lp152.5.9.1

openSUSE Leap 15.2:libX11-6-32bit-1.6.5-lp152.5.9.1

openSUSE Leap 15.2:libX11-data-1.6.5-lp152.5.9.1

openSUSE Leap 15.2:libX11-devel-1.6.5-lp152.5.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-14363.html
CVE-2020-14363
https://bugzilla.suse.com/1175239
SUSE Bug 1175239

openSUSE-SU-2020:1370-1

Описание

Список пакетов

openSUSE Leap 15.2

Ссылки

Уязвимость: CVE-2020-14363

Описание

Затронутые продукты

Ссылки