Univention Bugzilla – Bug 31456
mesa: Multiple issues (2.4)
Last modified: 2019-04-11 19:23:12 CEST
CVE-2013-1993 Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to privilege escalation or denial of service.
Memory corruption when processing shaders (CVE-2013-1872)
(In reply to Moritz Muehlenhoff from comment #1) > Memory corruption when processing shaders (CVE-2013-1872) Not affected: The affected code was introduced later
The maintenance with bug and security fixes for UCS 2.4-x has ended on the 31st of December 2013. Customers still on UCS 2.4-x are encouraged to update to UCS 3.x. Please contact your partner or Univention for any questions.