Univention Bugzilla – Bug 31485
libxres: Multiple issues (3.1)
Last modified: 2013-11-19 06:41:43 CET
+++ This bug was initially created as a clone of Bug #31484 +++ CVE-2013-1988 Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to privilege escalation or denial of service. The package is only unmaintained in UCS 2.4
Fixed in 3.2 through the import of Debian 6.0.8. The QA should ideally be made by the same person as for Bug 31956.
(In reply to Moritz Muehlenhoff from comment #1) > Fixed in 3.2 through the import of Debian 6.0.8. Correct
UCS 3.2 has been released: http://docs.univention.de/release-notes-3.2-en.html http://docs.univention.de/release-notes-3.2-de.html If this error occurs again, please use "Clone This Bug".