[ubuntu/jaunty-security] xorg-server, xorg-server (delayed) 2:1.6.0-0ubuntu14.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Tue May 18 22:03:39 BST 2010
xorg-server (2:1.6.0-0ubuntu14.2) jaunty-security; urgency=low
* SECURITY UPDATE: incorrect mod() macro could result in crashes
caused by remote attackers (LP: #551193).
- Added debian/patches/xaa-fbcomposite-fix-negative-size.patch
- CVE-2010-1166
* SECURITY UPDATE: xvfb MCOOKIE value could be hijacked due to
visiblity on the command-line,
- Updated debian/local/xvfb-run from Debian upstream:
http://git.debian.org/?p=pkg-xorg/xserver/xorg-server.git;a=commitdiff;h=ecf09e571198ee16256a5efd1c23fd286a4f2249;hp=cbccf51785b500f51dc974ed05f5512181d4c51f
- CVE-2009-1573
Date: Thu, 06 May 2010 13:23:52 -0700
Changed-By: Kees Cook <kees at ubuntu.com>
Maintainer: Ubuntu X-SWAT <ubuntu-x at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/xorg-server/2:1.6.0-0ubuntu14.2
-------------- next part --------------
Format: 1.8
Date: Thu, 06 May 2010 13:23:52 -0700
Source: xorg-server
Binary: xserver-xorg-core xserver-xorg-dev xdmx xdmx-tools xnest xvfb xserver-xephyr xserver-xfbdev xserver-xorg-core-dbg xserver-common
Architecture: source
Version: 2:1.6.0-0ubuntu14.2
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu X-SWAT <ubuntu-x at lists.ubuntu.com>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
xdmx - distributed multihead X server
xdmx-tools - Distributed Multihead X tools
xnest - Nested X server
xserver-common - common files used by various X servers
xserver-xephyr - nested X server
xserver-xfbdev - Linux framebuffer device tiny X server
xserver-xorg-core - Xorg X server - core server
xserver-xorg-core-dbg - Xorg - the X.Org X server (debugging symbols)
xserver-xorg-dev - Xorg X server - development files
xvfb - Virtual Framebuffer 'fake' X server
Launchpad-Bugs-Fixed: 551193
Changes:
xorg-server (2:1.6.0-0ubuntu14.2) jaunty-security; urgency=low
.
* SECURITY UPDATE: incorrect mod() macro could result in crashes
caused by remote attackers (LP: #551193).
- Added debian/patches/xaa-fbcomposite-fix-negative-size.patch
- CVE-2010-1166
* SECURITY UPDATE: xvfb MCOOKIE value could be hijacked due to
visiblity on the command-line,
- Updated debian/local/xvfb-run from Debian upstream:
http://git.debian.org/?p=pkg-xorg/xserver/xorg-server.git;a=commitdiff;h=ecf09e571198ee16256a5efd1c23fd286a4f2249;hp=cbccf51785b500f51dc974ed05f5512181d4c51f
- CVE-2009-1573
Checksums-Sha1:
5da931d86c5bc72abe9ff76ec95060cf163924a1 3152 xorg-server_1.6.0-0ubuntu14.2.dsc
dc23fb9a18a9615d2307dc299b33bba64283e613 115208 xorg-server_1.6.0-0ubuntu14.2.diff.gz
Checksums-Sha256:
786b2f2ac93ac38ed165d83ab95cfb7cd0b06ab187ff347a27adaee37903a545 3152 xorg-server_1.6.0-0ubuntu14.2.dsc
e81e6a709d14fac880f0cbb6ace834cacb64d3af909bc6fffa5e6154f62dc4fd 115208 xorg-server_1.6.0-0ubuntu14.2.diff.gz
Files:
0b861bd6318e201022295571b849b6b7 3152 x11 optional xorg-server_1.6.0-0ubuntu14.2.dsc
69e04a09b467bb3d3cd9e314ba26993b 115208 x11 optional xorg-server_1.6.0-0ubuntu14.2.diff.gz
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>
More information about the Jaunty-changes
mailing list