UbuntuUpdates.org

Package "libx11"

Name: libx11

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • X11 client-side library
  • X11 client-side library
  • X11 client-side library (development headers)
  • X11 client-side library (development documentation)
Latest version: 2:1.7.5-1ubuntu0.3
Release: jammy (22.04)
Level: security
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "libx11" in Jammy

Repository Area Version
base main 2:1.7.5-1
updates main 2:1.7.5-1ubuntu0.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2:1.7.5-1ubuntu0.3 2023-10-03 19:10:14 UTC

  libx11 (2:1.7.5-1ubuntu0.3) jammy-security; urgency=medium

  * SECURITY UPDATE: out-of-bounds memory access in _XkbReadKeySyms()
    - d/p/0001-CVE-2023-43785-out-of-bounds-memory-access-in-_XkbRe.patch
    - CVE-2023-43785
  * SECURITY UPDATE: stack exhaustion from infinite recursion in
    PutSubImage()
    - d/p/0002-CVE-2023-43786-stack-exhaustion-from-infinite-recurs.patch
    - d/p/0003-XPutImage-clip-images-to-maximum-height-width-allowe.patch
    - CVE-2023-43786
  * SECURITY UPDATE: integer overflow in XCreateImage() leading to a heap
    overflow
    - d/p/0004-XCreatePixmap-trigger-BadValue-error-for-out-of-rang.patch
    - d/p/0005-CVE-2023-43787-Integer-overflow-in-XCreateImage-lead.patch
    - CVE-2023-43787

 -- Marc Deslauriers <email address hidden> Mon, 02 Oct 2023 15:13:58 -0400
Source diff to previous version
CVE-2023-43785 libX11: out-of-bounds memory access in _XkbReadKeySyms()
CVE-2023-43786 libX11: stack exhaustion from infinite recursion in PutSubImage()
CVE-2023-43787 ibX11: integer overflow in XCreateImage() leading to a heap overflow

Version: 2:1.7.5-1ubuntu0.2 2023-06-15 18:07:01 UTC

  libx11 (2:1.7.5-1ubuntu0.2) jammy-security; urgency=medium

  * SECURITY UPDATE: multiple buffer overflows
    - debian/patches/CVE-2023-3138.patch: add bounds checks for extension
      request, event, & error codes in src/InitExt.c.
    - CVE-2023-3138

 -- Marc Deslauriers <email address hidden> Tue, 13 Jun 2023 07:25:59 -0400


About   -   Send Feedback to @ubuntu_updates