Bug#852966: jessie-pu: package libxi/2:1.7.4-1+deb8u1
Control: tags -1 + pending
On Sat, 2017-01-28 at 15:38 +0000, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
>
> On Sat, 2017-01-28 at 16:23 +0100, Julien Cristau wrote:
> > I think this is the last one for this round. It's also the one I'm
> > least confident about. But it's been in sid and wheezy-lts for a
> > while,
> > and a couple of issues have already been found and fixed, so maybe
> > it's
> > ok.
>
> Fingers crossed.
>
> > +libxi (2:1.7.4-1+deb8u1) jessie; urgency=medium
> > +
> > + * Insufficient validation of data from the X server can cause
> > out of
> > + boundary memory access or endless loops. Addresses CVE-2016-
> > 7945 and
> > + CVE-2016-7946.
>
> Please go ahead.
>
Uploaded and flagged for acceptance.
Regards,
Adam
Reply to: