Sicherheit: Mehrere Probleme in X.Org (Aktualisierung)

Lesezeichen hinzufügen

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============1948487110441675052==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="NsHAmgRpOmqfsFN2HGjvBXFtdkVnWNbA1"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--NsHAmgRpOmqfsFN2HGjvBXFtdkVnWNbA1
Content-Type: text/plain; charset=utf-
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-2436-2
December 10, 2014

xorg-server, xorg-server-lts-trusty vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS

Summary:

USN-2436-1 contained incomplete fixes for the X.Org X server.

Software Description:
- xorg-server: X.Org X11 server
- xorg-server-lts-trusty: Xorg X server - source files

Details:

USN-2436-1 fixed vulnerabilities in the X.Org X server. Since publication,
additional fixes have been made available for these issues. This update
adds the additional fixes.

Original advisory details:

Ilja van Sprundel discovered a multitude of security issues in the X.Org X
server. An attacker able to connect to an X server, either locally or
remotely, could use these issues to cause the X server to crash or execute
arbitrary code resulting in possible privilege escalation.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.10:
xserver-xorg-core 2:1.16.0-1ubuntu1.2

Ubuntu 14.04 LTS:
xserver-xorg-core 2:1.15.1-0ubuntu2.5

Ubuntu 12.04 LTS:
xserver-xorg-core 2:1.11.4-0ubuntu10.16
xserver-xorg-core-lts-trusty 2:1.15.1-0ubuntu2~precise4

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2436-2
http://www.ubuntu.com/usn/usn-2436-1
https://launchpad.net/bugs/1400942

Package Information:
https://launchpad.net/ubuntu/+source/xorg-server/2:1.16.0-1ubuntu1.2
https://launchpad.net/ubuntu/+source/xorg-server/2:1.15.1-0ubuntu2.5
https://launchpad.net/ubuntu/+source/xorg-server/2:1.11.4-0ubuntu10.16

https://launchpad.net/ubuntu/+source/xorg-server-lts-trusty/2:1.15.1-0ubuntu2~precise4

--NsHAmgRpOmqfsFN2HGjvBXFtdkVnWNbA1
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=VfLc
-----END PGP SIGNATURE-----

--NsHAmgRpOmqfsFN2HGjvBXFtdkVnWNbA1--

--===============1948487110441675052==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============1948487110441675052==--