Univention Bugzilla – Bug 52113
(ES 4.3) xorg-server
Last modified: 2020-11-30 18:20:56 CET
Provide xorg-server version 2:1.19.2-1+deb9u6 for UCS 4.3 First imported at bug #51930 This update addresses the following issues: * Out-Of-Bounds access in XkbSetNames function (CVE-2020-14345) * Integer underflow in the X input extension protocol (CVE-2020-14346) * leak of uninitialized heap memory from the X server to clients in AllocatePixmap of dix/pixmap.c (CVE-2020-14347) * XkbSelectEvents Integer Underflow Privilege Escalation Vulnerability (CVE-2020-14361) * XRecordRegisterClients Integer Underflow Privilege Escalation Vulnerability (CVE-2020-14362)
xserver-xorg-core: Installiert: 2:1.19.2-1+deb9u6 Installationskandidat: 2:1.19.2-1+deb9u6 Versionstabelle: *** 2:1.19.2-1+deb9u6 500 500 http://192.168.0.10/build2 ucs_4.3-0-extsec4.3/amd64/ Packages OK - xserver starts
CLOSED: Released as extsec4.3 update