[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 3686-2] xorg-server security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3686-2                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
December 17, 2023                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : xorg-server
Version        : 2:1.20.4-1+deb10u12
CVE ID         : CVE-2023-6377


The initial fix for CVE-2023-6377 as applied in DLA 3686-1 did not fully
fix the vulnerability. Updated packages correcting this issue including
the upstream merged commit are now available.


For Debian 10 buster, this problem has been fixed in version
2:1.20.4-1+deb10u12.

We recommend that you upgrade your xorg-server packages.

For the detailed security status of xorg-server please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xorg-server

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAmV/PWxfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy
MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7
WEeuURAAu3H57+MQwLI5dldDQ9jmAJffG2CrRiXSI7UAIq9pLUx7MQ1I+yS1bTKr
YfJ06J742Wq2D2MqGVZmleVob+Ykw+bJBWthA6HP4x6E3BBXlpuS5MsjX9HyuZpJ
es/gv1H1PvjoWQIZTLkFKLi+rMj4kPqtKuAy1LklJF/BkH4y3R7e1dOmnLhl4fSk
bx+bb1XSEn7PEyldNzwBgOs+zOn+xk/toIYYboBUNZ9kHRelQus3nsd1hbtqX242
E5MSwI527DcuMJ4ZDqy3wurPLj2PeGza8YtMl8yTfqmH66ZNwkBGgkxdAM9jpHqb
ogYPAaXErv83ivNu4uHz8m3Dp3k5g0fqzXC3dSO5rL4trom0Rgl7Ii4NF5M0Smjc
rYxr7iJ6t9F5N6VXxt2k7Cu/cS+VgIFXFo45nPuhLbB++il/Hptrsx3ttj41EFlx
zNvZDT2CegalDk0lwGQy4ZdDXeRwdwz6mlFAko9HaCntoHLjs/6huvWgnHIFzLCb
3X5EXJHtDRJguAF1Qy2In7l5IDspfgQoeRzlWKhnS634LeVIVqsLRA53OruQo6ne
9n2k+FC8TMsLNXJpA1fVjlP1jGhtFzANa5g+Twn8AFqzRiRPqOVQrcFjJKrmG1Y0
kdbTrteAGBwyGxP3JlHTvg8OmVj0rzPj362ttfup1MZUsLGEI2Q=
=9Txs
-----END PGP SIGNATURE-----


Reply to: