Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme in X11
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in X11
ID: SSA:2017-291-03
Distribution: Slackware
Plattformen: Slackware -current, Slackware x86_64 -current, Slackware 14.0, Slackware x86_64 14.0, Slackware 14.1, Slackware x86_64 14.1, Slackware 14.2, Slackware x86_64 14.2
Datum: Mi, 18. Oktober 2017, 23:45
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
Applikationen: X11

Originalnachricht


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] xorg-server (SSA:2017-291-03)

New xorg-server packages are available for Slackware 14.0, 14.1, 14.2,
and -current to fix security issues.


Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/xorg-server-1.18.3-i586-5_slack14.2.txz: Rebuilt.
This update fixes integer overflows and other possible security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
(* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated packages for Slackware 14.0:
xorg-server-1.12.4-i486-5_slack14.0.txz
xorg-server-xephyr-1.12.4-i486-5_slack14.0.txz
xorg-server-xnest-1.12.4-i486-5_slack14.0.txz
xorg-server-xvfb-1.12.4-i486-5_slack14.0.txz

Updated packages for Slackware x86_64 14.0:
xorg-server-1.12.4-x86_64-5_slack14.0.txz
xorg-server-xephyr-1.12.4-x86_64-5_slack14.0.txz
xorg-server-xnest-1.12.4-x86_64-5_slack14.0.txz
xorg-server-xvfb-1.12.4-x86_64-5_slack14.0.txz

Updated packages for Slackware 14.1:
xorg-server-1.14.3-i486-6_slack14.1.txz
xorg-server-xephyr-1.14.3-i486-6_slack14.1.txz
xorg-server-xnest-1.14.3-i486-6_slack14.1.txz
xorg-server-xvfb-1.14.3-i486-6_slack14.1.txz

Updated packages for Slackware x86_64 14.1:
xorg-server-1.14.3-x86_64-6_slack14.1.txz
xorg-server-xephyr-1.14.3-x86_64-6_slack14.1.txz
xorg-server-xnest-1.14.3-x86_64-6_slack14.1.txz
xorg-server-xvfb-1.14.3-x86_64-6_slack14.1.txz

Updated packages for Slackware 14.2:
xorg-server-1.18.3-i586-5_slack14.2.txz
xorg-server-xephyr-1.18.3-i586-5_slack14.2.txz
xorg-server-xnest-1.18.3-i586-5_slack14.2.txz
xorg-server-xvfb-1.18.3-i586-5_slack14.2.txz

Updated packages for Slackware x86_64 14.2:
xorg-server-1.18.3-x86_64-5_slack14.2.txz
xorg-server-xephyr-1.18.3-x86_64-5_slack14.2.txz
xorg-server-xnest-1.18.3-x86_64-5_slack14.2.txz
xorg-server-xvfb-1.18.3-x86_64-5_slack14.2.txz

Updated packages for Slackware -current:
xorg-server-1.19.5-i586-1.txz
xorg-server-xephyr-1.19.5-i586-1.txz
xorg-server-xnest-1.19.5-i586-1.txz
xorg-server-xvfb-1.19.5-i586-1.txz

Updated packages for Slackware x86_64 -current:
xorg-server-1.19.5-x86_64-1.txz
xorg-server-xephyr-1.19.5-x86_64-1.txz
xorg-server-xnest-1.19.5-x86_64-1.txz
xorg-server-xvfb-1.19.5-x86_64-1.txz


MD5 signatures:
+-------------+

Slackware 14.0 packages:
ee4f90528fba8452ac4b408139d15a8c xorg-server-1.12.4-i486-5_slack14.0.txz
d8e91a703e61ec232cd213fb203841d9
xorg-server-xephyr-1.12.4-i486-5_slack14.0.txz
c1c61f569b84bedfacd1ec4bbae7f568 xorg-server-xnest-1.12.4-i486-5_slack14.0.txz
fbe593fb781e38956ea6e3a2f18a41a8 xorg-server-xvfb-1.12.4-i486-5_slack14.0.txz

Slackware x86_64 14.0 packages:
9828963c75bf1462b4eed4c152928da7 xorg-server-1.12.4-x86_64-5_slack14.0.txz
480a631f0a1d75c473a4e324a43c7f94
xorg-server-xephyr-1.12.4-x86_64-5_slack14.0.txz
a989e04fa0c6c2caca1f52d557f60815
xorg-server-xnest-1.12.4-x86_64-5_slack14.0.txz
2d71d40ceceb34a76b55af5f743b941c
xorg-server-xvfb-1.12.4-x86_64-5_slack14.0.txz

Slackware 14.1 packages:
5f9b0c906ec30045e6b29758613d2c05 xorg-server-1.14.3-i486-6_slack14.1.txz
aa1fdecf4ca8706f135454bfaa4be2c7
xorg-server-xephyr-1.14.3-i486-6_slack14.1.txz
bf7b97f60180a3ba8bd456cf532e56c0 xorg-server-xnest-1.14.3-i486-6_slack14.1.txz
bec259851aa1ab066a224bf33ea3f817 xorg-server-xvfb-1.14.3-i486-6_slack14.1.txz

Slackware x86_64 14.1 packages:
63d9afb9c1c9532066fe5f085493d875 xorg-server-1.14.3-x86_64-6_slack14.1.txz
1c7464fc92dea70b7f80233a2ee047d8
xorg-server-xephyr-1.14.3-x86_64-6_slack14.1.txz
bad6772b5b5c8b588ebf3f95d98dc03a
xorg-server-xnest-1.14.3-x86_64-6_slack14.1.txz
8faef6f79f1f6fd5249ab7b746d0e4b8
xorg-server-xvfb-1.14.3-x86_64-6_slack14.1.txz

Slackware 14.2 packages:
61c7132d039462d979487e5ed2a611bb xorg-server-1.18.3-i586-5_slack14.2.txz
4d8d3eb2e9d8fce26f0879547e5777ff
xorg-server-xephyr-1.18.3-i586-5_slack14.2.txz
6eb112e044c2734667d9e76493ec71f8 xorg-server-xnest-1.18.3-i586-5_slack14.2.txz
cf2749d66863b59d2fd14a6115efa0f3 xorg-server-xvfb-1.18.3-i586-5_slack14.2.txz

Slackware x86_64 14.2 packages:
5fff5415b9ebb8421235a424332e62e6 xorg-server-1.18.3-x86_64-5_slack14.2.txz
35ba4c0335299fbf61d1bd1e6cfdcc37
xorg-server-xephyr-1.18.3-x86_64-5_slack14.2.txz
95c20b04b29755c13d6fa92a2d175ef0
xorg-server-xnest-1.18.3-x86_64-5_slack14.2.txz
f7d95a5fb1d54c987e3d7edcb71dd574
xorg-server-xvfb-1.18.3-x86_64-5_slack14.2.txz

Slackware -current packages:
83a74f6cc1ea6b0fdb4498c7aa72d75f x/xorg-server-1.19.5-i586-1.txz
0be91844d8ceb230b5ba955d6b60bb27 x/xorg-server-xephyr-1.19.5-i586-1.txz
47131515bad9b52fe2d150a01b702ab7 x/xorg-server-xnest-1.19.5-i586-1.txz
52f3f0675addadbbddc2ed19a6bb1087 x/xorg-server-xvfb-1.19.5-i586-1.txz

Slackware x86_64 -current packages:
f6c7fae66c9ecaa208a736985cd3c9e5 x/xorg-server-1.19.5-x86_64-1.txz
7616cd451052e2c2e303a5484b1b1f22 x/xorg-server-xephyr-1.19.5-x86_64-1.txz
3b6ecf3590c330ed3beaad1c29334284 x/xorg-server-xnest-1.19.5-x86_64-1.txz
6eba0b3b6135a16222948d2d05c510b6 x/xorg-server-xvfb-1.19.5-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the packages as root:
# upgradepkg xorg-server-*.txz


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

+------------------------------------------------------------------------+
| To leave the slackware-security mailing list: |
+------------------------------------------------------------------------+
| Send an email to majordomo@slackware.com with this text in the body of |
| the email message: |
| |
| unsubscribe slackware-security |
| |
| You will get a confirmation message back containing instructions to |
| complete the process. Please do not reply to this email address. |
+------------------------------------------------------------------------+
-----BEGIN PGP SIGNATURE-----

iEYEARECAAYFAlnnrOoACgkQakRjwEAQIjOgZACdFiVGqNxQGs2+qp9/A1svWBGA
/DUAnRguDPbJNZJwWhGQheP+r+5dzanD
=9Dcp
-----END PGP SIGNATURE-----
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung