Issue Overview:
Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.
Affected Packages:
libxcb
Issue Correction:
Run yum update libxcb to update your system.
New Packages:
i686:
libxcb-debuginfo-1.8.1-1.15.amzn1.i686
libxcb-devel-1.8.1-1.15.amzn1.i686
libxcb-python-1.8.1-1.15.amzn1.i686
libxcb-1.8.1-1.15.amzn1.i686
noarch:
libxcb-doc-1.8.1-1.15.amzn1.noarch
src:
libxcb-1.8.1-1.15.amzn1.src
x86_64:
libxcb-1.8.1-1.15.amzn1.x86_64
libxcb-devel-1.8.1-1.15.amzn1.x86_64
libxcb-debuginfo-1.8.1-1.15.amzn1.x86_64
libxcb-python-1.8.1-1.15.amzn1.x86_64
Red Hat: CVE-2013-2064
Mitre: CVE-2013-2064
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 1 | i686 | libxcb-debuginfo | < 1.8.1-1.15.amzn1 | libxcb-debuginfo-1.8.1-1.15.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | libxcb-devel | < 1.8.1-1.15.amzn1 | libxcb-devel-1.8.1-1.15.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | libxcb-python | < 1.8.1-1.15.amzn1 | libxcb-python-1.8.1-1.15.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | libxcb | < 1.8.1-1.15.amzn1 | libxcb-1.8.1-1.15.amzn1.i686.rpm |
Amazon Linux | 1 | noarch | libxcb-doc | < 1.8.1-1.15.amzn1 | libxcb-doc-1.8.1-1.15.amzn1.noarch.rpm |
Amazon Linux | 1 | x86_64 | libxcb | < 1.8.1-1.15.amzn1 | libxcb-1.8.1-1.15.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | libxcb-devel | < 1.8.1-1.15.amzn1 | libxcb-devel-1.8.1-1.15.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | libxcb-debuginfo | < 1.8.1-1.15.amzn1 | libxcb-debuginfo-1.8.1-1.15.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | libxcb-python | < 1.8.1-1.15.amzn1 | libxcb-python-1.8.1-1.15.amzn1.x86_64.rpm |