-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2361-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Emilio Pozuelo Monfort September 01, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : libx11 Version : 2:1.6.4-3+deb9u3 CVE ID : CVE-2020-14363 Debian Bug : 969008 Jayden Rivers found an integer overflow in the init_om function of libX11, the X11 client-side library, which could lead to a double free. For Debian 9 stretch, this problem has been fixed in version 2:1.6.4-3+deb9u3. We recommend that you upgrade your libx11 packages. For the detailed security status of libx11 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libx11 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAl9N/m0ACgkQnUbEiOQ2 gwLLZRAA0IibAKeJzS3X7lqjPm4JEZknbGvzUD+lZz74jCBCqkkEFb23A4Ti3h/H aAFhzxF7doYZyVGFXZNxdMigD/vCzRqG9pxye7nZ1e46qKBdE2aHkhtJC39hPbeR yRkz6qDD5aexCDKPXW/ohVaUWy9x4Nw0SdrSk1KuHoDJ5AiQ5HnsarZA6Y1laFQW UtOUq3fW8zE20qWdm5EiNGiNVrCQwWB7NqqPkV/7/rV2lnTiz5pzbpNzxEVb1fkU hsxdEimquZ+Nf/ikKuCpwvo43h9vgo7MiAIjAYVXQVgKqarnX9Q0Ovb3OYshiYjh 4TAtzvgK0IXqEAAdH7LbUt0MPO17sFRyrY1TRU4hdczJ57imZ7TGCJ0pmsPYpQiy NapupdQwp56GPdrlKKjixqaFn8XFFVij6oBlYztuVKPFWDAjpSa0gCP0+RSgPp9s IkldaC+NhrCHigfhN+FnE8mRxSd+j3AZo3oZ2r7L8mopwjxd3mx9Kt0CMcD+/oC0 0AtmInQgD6DXIHt9nHIlpKlPd1f6qLIR35eE0JpT69wycRGZWOFTJLLUWTXLx8af +8MJBEUjb/Wpaa0oR5lzRe/pZVN3R7NrPnQtPzYHRD5RsikvEHOvffHTBgILcesv 9jnf2X4RE1mqkqgpL4d4bwOBen67GH9cjURv4OPjTB1v+EuHLLE= =FV2s -----END PGP SIGNATURE-----