1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4000-1] xorg-server security update

    From Moritz Muehlenhoff@1:229/2 to All on Tue Oct 17 23:20:02 2017
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4000-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 17, 2017 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : xorg-server
    CVE ID : CVE-2017-12176 CVE-2017-12177 CVE-2017-12178 CVE-2017-12179
    CVE-2017-12180 CVE-2017-12181 CVE-2017-12182 CVE-2017-12183
    CVE-2017-12184 CVE-2017-12185 CVE-2017-12186 CVE-2017-12187
    CVE-2017-13721 CVE-2017-13723

    Several vulnerabilities have been discovered in the X.Org X server. An
    attacker who's able to connect to an X server could cause a denial of
    service or potentially the execution of arbitrary code.

    For the oldstable distribution (jessie), these problems have been fixed
    in version 2:1.16.4-1+deb8u2.

    For the stable distribution (stretch), these problems have been fixed in version 2:1.19.2-1+deb9u2.

    We recommend that you upgrade your xorg-server packages.

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAlnmcyoACgkQEMKTtsN8 TjaAIg//ftZgz1EDexlx5cThIvVoSHaltmYYSuozRcvKEdNdJk4BewgPG9LcOqtb 6oZheoPLrNgWRrl6dDvKC1TAp3xXKajIn1ABevteSE0K7TkvbGZE1Q5jUNhmGnyu LtWlA1zlGUHOihMnrXLWapwkBpD06pzZAiMusTSbZDYwSkINkMCvXc6KI37WyYIK Qtxif0TwxCFjvRbwKaE9Z3MaPcyOsZzCsn0geMcXZQeA+IMHmugIY/5Nlh8rSxxn H2b7laRM6B/js5ww2S8H77fTnmQADk9n40nqylmw/DxGI+bwDaUDkwwf8w91tme3 2Ch+uoJxI5PbFHjUD8IxRpiUUo6x65B1VBIXnwwXanOLD3gLZU31W0IFXqqWPuX1 p1JjNVBGRWQGWoMXN4pVffKOfAQxfONl5SQMCm53n9YpEW+6gpp66WLzIgSdiduX 2Gq1ZQ0SWXRW+nK39bsBIzCIyTOPwP07xFq0TEhb+ZvsfGnViyw3oPzYDl9a7xJE GuIlUxHWFNi3nOhowgEsxOBdz5qYhtRuXsJ4E1l8a61ta73y8f0bL2t06tME961v ZjZ3zFeJXDji8jh8ZErOJeXUYnNA46xG2o5ejymXhHFV4fbSnSGJzoYxzh2Gx892 DxGwqfV1As791q+tl4r5t0aFQqMraz8WKrvs1DK6qD3F275O2hA=
    =BLPr
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)