Bug#852966: jessie-pu: package libxi/2:1.7.4-1+deb8u1
Control: tags -1 + confirmed
On Sat, 2017-01-28 at 16:23 +0100, Julien Cristau wrote:
> I think this is the last one for this round. It's also the one I'm
> least confident about. But it's been in sid and wheezy-lts for a while,
> and a couple of issues have already been found and fixed, so maybe it's
> ok.
Fingers crossed.
> +libxi (2:1.7.4-1+deb8u1) jessie; urgency=medium
> +
> + * Insufficient validation of data from the X server can cause out of
> + boundary memory access or endless loops. Addresses CVE-2016-7945 and
> + CVE-2016-7946.
Please go ahead.
Regards,
Adam
Reply to: