/[advisories]/27206.adv
ViewVC logotype

Contents of /27206.adv

Parent Directory Parent Directory | Revision Log Revision Log


Revision 10730 - (show annotations) (download)
Thu Aug 27 15:15:41 2020 UTC (3 years, 7 months ago) by neoclust
File size: 1001 byte(s)
MGASA-2020-0350: x11-server-1.20.9-1.mga7
1 type: security
2 subject: Updated x11-server packages fix security vulnerabilities
3 CVE:
4 - CVE-2020-14345
5 - CVE-2020-14346
6 - CVE-2020-14361
7 - CVE-2020-14362
8 src:
9 7:
10 core:
11 - x11-server-1.20.9-1.mga7
12 description: |
13 The handler for the XkbSetNames request does not validate the request length
14 before accessing its contents (CVE-2020-14345).
15
16 An integer underflow exists in the handler for the XIChangeHierarchy request
17 (CVE-2020-14346).
18
19 An integer underflow exist in the handler for the XkbSelectEvents request
20 (CVE-2020-14361).
21
22 An integer underflow exist in the handler for the CreateRegister request of
23 the X record extension (CVE-2020-14362).
24
25 The x11-server package has been updated to version 1.20.9, fixing these issues
26 and other bugs.
27 references:
28 - https://bugs.mageia.org/show_bug.cgi?id=27206
29 - https://lists.x.org/archives/xorg-announce/2020-August/003059.html
30 - https://lists.x.org/archives/xorg-announce/2020-August/003058.html
31 ID: MGASA-2020-0350

  ViewVC Help
Powered by ViewVC 1.1.30