[ubuntu/lunar-security] xorg-server 2:21.1.7-1ubuntu3.4 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Dec 13 13:16:44 UTC 2023
xorg-server (2:21.1.7-1ubuntu3.4) lunar-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds memory write in XKB button actions
- debian/patches/CVE-2023-6377.patch: allocate enough XkbActions for
our buttons in Xi/exevents.c, dix/devices.c.
- CVE-2023-6377
* SECURITY UPDATE: Out-of-bounds memory read in RRChangeOutputProperty
and RRChangeProviderProperty
- debian/patches/CVE-2023-6478.patch: avoid integer truncation in
length check of ProcRRChange*Property in randr/rrproperty.c,
randr/rrproviderproperty.c.
- CVE-2023-6478
Date: 2023-12-13 01:33:54.379772+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.7-1ubuntu3.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the lunar-changes
mailing list