Bug#906012: libxcursor: CVE-2015-9262
On Mon, Aug 13, 2018 at 08:18:27AM +0100, Chris Lamb wrote:
> Hi security team,
>
> > libxcursor: CVE-2015-9262
>
> I have prepared an update for stretch:
>
> libxcursor (1:1.1.14-1+deb9u2) stretch-security; urgency=high
>
> * Non-maintainer upload by the Security Team.
> * Fix a denial of service or potentially code execution via
> a one-byte heap overflow. (CVE-2015-9262) Closes: #906012)
>
> -- Chris Lamb <lamby@debian.org> Mon, 13 Aug 2018 09:09:13 +0200
>
>
> Full debdiff attached. Permission to upload to stretch-security?
Looks fine, please upload to security-master.
Cheers,
Moritz
Reply to: