Univention Bugzilla – Bug 47615
libxcursor: Multiple issues (4.2)
Last modified: 2018-08-22 15:03:16 CEST
New Debian libxcursor 1:1.1.14-1+deb8u2 fixes: This update addresses the following issue: * 1-byte heap-based overflow in _XcursorThemeInherits function in library.c (CVE-2015-9262)
--- mirror/ftp/4.2/unmaintained/4.2-4/source/libxcursor_1.1.14-1+deb8u1.dsc +++ apt/ucs_4.2-0-errata4.2-4/source/libxcursor_1.1.14-1+deb8u2.dsc @@ -1,3 +1,8 @@ +1:1.1.14-1+deb8u2 [Sat, 18 Aug 2018 16:39:39 +0100] Chris Lamb <lamby@debian.org>: + + * Fix a denial of service or potentially code execution via + a one-byte heap overflow. (CVE-2015-9262) Closes: #906012) + 1:1.1.14-1+deb8u1 [Thu, 07 Dec 2017 16:41:25 +0100] Salvatore Bonaccorso <carnil@debian.org>: * Non-maintainer upload by the Security Team. <http://10.200.17.11/4.2-4/#6990254288635101776>
OK: yaml OK: errata-announce OK: patch OK: piuparts [4.2-4] bb25e4d0d1 Bug #47615: libxcursor 1:1.1.14-1+deb8u2 doc/errata/staging/libxcursor.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) [4.2-4] b79f0f080e Bug #47615: libxcursor 1:1.1.14-1+deb8u2 doc/errata/staging/libxcursor.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<http://errata.software-univention.de/ucs/4.2/493.html>