Univention Bugzilla – Bug 53404
libx11: Multiple issues (5.0)
Last modified: 2021-06-09 19:26:05 CEST
New Debian libx11 2:1.6.7-1+deb10u2 fixes: This update addresses the following issue: * missing request length checks (CVE-2021-31535)
--- mirror/ftp/pool/main/libx/libx11/libx11_1.6.7-1+deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-0/source/libx11_1.6.7-1+deb10u2.dsc @@ -1,3 +1,8 @@ +2:1.6.7-1+deb10u2 [Fri, 21 May 2021 16:42:44 +0200] Julien Cristau <jcristau@debian.org>: + + * Reject string longer than USHRT_MAX before sending them on the wire + (CVE-2021-31535) + 2:1.6.7-1+deb10u1 [Fri, 11 Sep 2020 19:38:11 +0200] Moritz Mühlenhoff <jmm@debian.org>: * CVE-2020-14344 <http://piuparts.knut.univention.de/5.0-0/#326872830798308475>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-0] f492850e6d Bug #53404: libx11 2:1.6.7-1+deb10u2 doc/errata/staging/libx11.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x6>