Debian
xorg-server package

xorg-server 2:1.19.2-1+deb9u2 source package in Debian

Changelog

xorg-server (2:1.19.2-1+deb9u2) stretch-security; urgency=high

  * Unvalidated extra length in ProcEstablishConnection (CVE-2017-12176)
  * dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo
    (CVE-2017-12177)
  * Xi: fix wrong extra length check in ProcXIChangeHierarchy (CVE-2017-12178)
  * Xi: integer overflow and unvalidated length in
    (S)ProcXIBarrierReleasePointer (CVE-2017-12179)
  * Unvalidated lengths in
    - XFree86-VidModeExtension (CVE-2017-12180)
    - XFree86-DGA (CVE-2017-12181)
    - XFree86-DRI (CVE-2017-12182)
    - XFIXES (CVE-2017-12183)
    - XINERAMA (CVE-2017-12184
    - MIT-SCREEN-SAVER (CVE-2017-12185
    - X-Resource (CVE-2017-12186
    - RENDER (CVE-2017-12187)
  * os: Make sure big requests have sufficient length.
  * Xext/shm: Validate shmseg resource id (CVE-2017-13721)
  * xkb: Handle xkb formated string output safely (CVE-2017-13723)
  * xkb: Escape non-printable characters correctly.
  * render: Fix out of boundary heap access

 -- Julien Cristau <email address hidden>  Sat, 14 Oct 2017 13:36:12 +0200

Upload details

Uploaded by:
Debian X Strike Force
Uploaded to:
Sid
Original maintainer:
Debian X Strike Force
Architectures:
any all
Section:
x11
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
xorg-server_1.19.2-1+deb9u2.dsc 4.7 KiB 1a12ad229b331a915b619c3f9efc5f73a60267c753ade0df1d7e2505598249a0
xorg-server_1.19.2.orig.tar.gz 7.9 MiB 191d91d02c059c66747635e145c30bc1004e703fe3b74439e26c0d05d5c4d28b
xorg-server_1.19.2-1+deb9u2.diff.gz 143.2 KiB 75c8eb9f8ca229e024d41803ba145c563474eae12f0a7672c20e55d607cb233d

No changes file available.

Binary packages built by this source