drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Pufferüberlauf in X.Org
| Name: |
Pufferüberlauf in X.Org |
|
| ID: |
USN-1502-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 12.04 LTS |
|
| Datum: |
Mi, 11. Juli 2012, 23:12 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2118 |
|
| Applikationen: |
X11 |
|
Originalnachricht |
--===============3112262499592678558==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="ZPt4rx8FFjLCG7dd"
Content-Disposition: inline
--ZPt4rx8FFjLCG7dd
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-1502-1
July 11, 2012
xorg-server vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS
Summary:
The X.Org X server could be made to crash if a specially crafted input
device was added.
Software Description:
- xorg-server: X.Org X server
Details:
Ken Mixter discovered a format string vulnerability in the
LogVHdrMessageVerb function when handling input device names. This
could allow a local attacker to cause a denial of service or possibly
execute arbitrary code.
The default compiler options for the affected release should reduce
the vulnerability to a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 LTS:
xserver-xorg-core 2:1.11.4-0ubuntu10.5
After a standard system update you need to reboot your computer to make
all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-1502-1
CVE-2012-2118
Package Information:
https://launchpad.net/ubuntu/+source/xorg-server/2:1.11.4-0ubuntu10.5
--ZPt4rx8FFjLCG7dd
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=pNDp
-----END PGP SIGNATURE-----
--ZPt4rx8FFjLCG7dd--
--===============3112262499592678558==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============3112262499592678558==--
|
|
|
|
