UbuntuUpdates.org

Package "libx11-xcb1"

Name: libx11-xcb1

Description:

Xlib/XCB interface library
Latest version: 2:1.7.5-1ubuntu0.3
Release: jammy (22.04)
Level: security
Repository: main
Head package: libx11

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libx11-xcb1"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libx11-xcb1" in Jammy

Repository Area Version
base main 2:1.7.5-1
updates main 2:1.7.5-1ubuntu0.3

Changelog

Version: 2:1.7.5-1ubuntu0.3 2023-10-03 19:10:14 UTC

  libx11 (2:1.7.5-1ubuntu0.3) jammy-security; urgency=medium

  * SECURITY UPDATE: out-of-bounds memory access in _XkbReadKeySyms()
    - d/p/0001-CVE-2023-43785-out-of-bounds-memory-access-in-_XkbRe.patch
    - CVE-2023-43785
  * SECURITY UPDATE: stack exhaustion from infinite recursion in
    PutSubImage()
    - d/p/0002-CVE-2023-43786-stack-exhaustion-from-infinite-recurs.patch
    - d/p/0003-XPutImage-clip-images-to-maximum-height-width-allowe.patch
    - CVE-2023-43786
  * SECURITY UPDATE: integer overflow in XCreateImage() leading to a heap
    overflow
    - d/p/0004-XCreatePixmap-trigger-BadValue-error-for-out-of-rang.patch
    - d/p/0005-CVE-2023-43787-Integer-overflow-in-XCreateImage-lead.patch
    - CVE-2023-43787

 -- Marc Deslauriers <email address hidden> Mon, 02 Oct 2023 15:13:58 -0400
Source diff to previous version
CVE-2023-43785 libX11: out-of-bounds memory access in _XkbReadKeySyms()
CVE-2023-43786 libX11: stack exhaustion from infinite recursion in PutSubImage()
CVE-2023-43787 ibX11: integer overflow in XCreateImage() leading to a heap overflow

Version: 2:1.7.5-1ubuntu0.2 2023-06-15 18:07:01 UTC

  libx11 (2:1.7.5-1ubuntu0.2) jammy-security; urgency=medium

  * SECURITY UPDATE: multiple buffer overflows
    - debian/patches/CVE-2023-3138.patch: add bounds checks for extension
      request, event, & error codes in src/InitExt.c.
    - CVE-2023-3138

 -- Marc Deslauriers <email address hidden> Tue, 13 Jun 2023 07:25:59 -0400


About   -   Send Feedback to @ubuntu_updates