Univention Bugzilla – Bug 51930
xorg-server: Multiple issues (4.4)
Last modified: 2020-09-02 11:40:07 CEST
New Debian xorg-server 2:1.19.2-1+deb9u6 fixes: This update addresses the following issues: * Out-Of-Bounds access in XkbSetNames function (CVE-2020-14345) * Integer underflow in the X input extension protocol (CVE-2020-14346) * leak of uninitialized heap memory from the X server to clients in AllocatePixmap of dix/pixmap.c (CVE-2020-14347) * XkbSelectEvents Integer Underflow Privilege Escalation Vulnerability (CVE-2020-14361) * XRecordRegisterClients Integer Underflow Privilege Escalation Vulnerability (CVE-2020-14362)
--- mirror/ftp/4.3/unmaintained/4.3-3/source/xorg-server_1.19.2-1+deb9u5.dsc +++ apt/ucs_4.4-0-errata4.4-5/source/xorg-server_1.19.2-1+deb9u6.dsc @@ -1,3 +1,19 @@ +2:1.19.2-1+deb9u6 [Sun, 30 Aug 2020 17:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS Team. + * CVE-2020-14345 + Out-Of-Bounds access in the handler for the XkbSetNames requests + * CVE-2020-14346 + integer underflow in the handler for the XIChangeHierarchy request + * CVE-2020-14347 + leak of uninitialize heap memory to clients which might lead to + privilege elevation in the client + * CVE-2020-14361 + integer underflow in the handler for the XkbSelectEvents request + * CVE-2020-14362 + integer underflow in the handler for the CreateRegister request of + the X record extension. + 2:1.19.2-1+deb9u5 [Wed, 31 Oct 2018 17:58:03 +0100] Andreas Boll <aboll@debian.org>: * Cherry-pick c2954b16c (glx: do not pick sRGB config for 32-bit RGBA <http://10.200.17.11/4.4-5/#4988821390611127976>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-5] 9f11f6cd12 Bug #51930: xorg-server 2:1.19.2-1+deb9u6 doc/errata/staging/xorg-server.yaml | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x733>