Bug#1022560: libx11: CVE-2022-3554
Source: libx11
X-Debbugs-CC: team@security.debian.org
Severity: important
Tags: security
Hi,
The following vulnerability was published for libx11.
CVE-2022-3554[0]:
| A vulnerability has been found in X.org libX11 and classified as
| problematic. This vulnerability affects the function
| _XimRegisterIMInstantiateCallback of the file
| modules/im/ximcp/imsClbk.c. The manipulation leads to memory leak. It
| is recommended to apply a patch to fix this issue. VDB-211054 is the
| identifier assigned to this vulnerability.
https://gitlab.freedesktop.org/xorg/lib/libx11/commit/1d11822601fd24a396b354fa616b04ed3df8b4ef
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2022-3554
https://www.cve.org/CVERecord?id=CVE-2022-3554
Please adjust the affected versions in the BTS as needed.
Reply to: