Bug#852947: jessie-pu: package libx11/2:1.6.2-3+deb8u1

To: 852947@bugs.debian.org, Julien Cristau <jcristau@debian.org>
Subject: Bug#852947: jessie-pu: package libx11/2:1.6.2-3+deb8u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Fri, 17 Nov 2017 06:30:05 +0000
Message-id: <[🔎] 1510900205.3138.11.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 852947@bugs.debian.org
In-reply-to: <1485611495.1797.8.camel@adam-barratt.org.uk>
References: <20170128132903.ssryngs6rtywehz7@betterave.cristau.org> <1485611495.1797.8.camel@adam-barratt.org.uk> <20170128132903.ssryngs6rtywehz7@betterave.cristau.org>

Control: tags -1 + pending

On Sat, 2017-01-28 at 13:51 +0000, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Sat, 2017-01-28 at 14:29 +0100, Julien Cristau wrote:
> > +libx11 (2:1.6.2-3+deb8u1) jessie; urgency=medium
> > +
> > +  * Insufficient validation of data from the X server can cause
> > out of
> > +    boundary memory read (XGetImage()) or write (XListFonts()).
> > +    Addresses CVE-2016-7942 and CVE-2016-7943.
> 
> Please go ahead.
> 

Uploaded and flagged for acceptance.

Regards,

Adam

Reply to:

Prev by Date: Status of the marble package.
Next by Date: Bug#852949: jessie-pu: package libxfixes/1:5.0.1-2+deb8u1
Previous by thread: Status of the marble package.
Next by thread: Processed: Re: Bug#852947: jessie-pu: package libx11/2:1.6.2-3+deb8u1
Index(es):
- Date
- Thread