[Git][security-tracker-team/security-tracker][master] libx11 fixed in sid

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Oct 4 13:24:10 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cd8370a3 by Moritz Muehlenhoff at 2023-10-04T14:23:47+02:00
libx11 fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -222,13 +222,13 @@ CVE-2023-43788 [libXpm: out of bounds read in XpmCreateXpmImageFromBuffer()]
 	NOTE: https://www.openwall.com/lists/oss-security/2023/10/03/1
 	NOTE: Fixed by: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/2fa554b01ef6079a9b35df9332bdc4f139ed67e0
 CVE-2023-43787 [ibX11: integer overflow in XCreateImage() leading to a heap overflow]
-	- libx11 <unfixed>
+	- libx11 2:1.8.7-1
 	- libxpm <unfixed>
 	NOTE: https://www.openwall.com/lists/oss-security/2023/10/03/1
 	NOTE: Fixed by: https://gitlab.freedesktop.org/xorg/lib/libx11/-/commit/7916869d16bdd115ac5be30a67c3749907aea6a0
 	NOTE: Hardening: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/91f887b41bf75648df725a4ed3be036da02e911e
 CVE-2023-43786 [libX11: stack exhaustion from infinite recursion in PutSubImage()]
-	- libx11 <unfixed>
+	- libx11 2:1.8.7-1
 	- libxpm <unfixed>
 	NOTE: https://www.openwall.com/lists/oss-security/2023/10/03/1
 	NOTE: Fixed by: https://gitlab.freedesktop.org/xorg/lib/libx11/-/commit/204c3393c4c90a29ed6bef64e43849536e863a86
@@ -236,7 +236,7 @@ CVE-2023-43786 [libX11: stack exhaustion from infinite recursion in PutSubImage(
 	NOTE: Hardening: https://gitlab.freedesktop.org/xorg/lib/libx11/-/commit/b4031fc023816aca07fbd592ed97010b9b48784b
 	NOTE: Hardening: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/84fb14574c039f19ad7face87eb9acc31a50701c
 CVE-2023-43785 [libX11: out-of-bounds memory access in _XkbReadKeySyms()]
-	- libx11 <unfixed>
+	- libx11 2:1.8.7-1
 	NOTE: https://www.openwall.com/lists/oss-security/2023/10/03/1
 	NOTE: Fixed by: https://gitlab.freedesktop.org/xorg/lib/libx11/-/commit/6858d468d9ca55fb4c5fd70b223dbc78a3358a7f
 CVE-2023-5346



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd8370a3d3df2e596ba55c46107174513bfc337c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd8370a3d3df2e596ba55c46107174513bfc337c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231004/00cbd082/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list