Lucene search

K
oraclelinuxOracleLinuxELSA-2019-2079
HistoryAug 13, 2019 - 12:00 a.m.

Xorg security and bug fix update

2019-08-1300:00:00
linux.oracle.com
71

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.072 Low

EPSS

Percentile

93.4%

gdm
[3.28.2-16]

  • Dont bring up login screen if background session gets killed
    Related: #1680120
    [3.28.2-15]
  • sync AllowMultipleSessionsPerUser patch from 7.6 branch
    Resolves: #1664353
  • Create dconf dirs by default
    Resolves: #1664284
    [3.28.2-14]
  • Fix unlock on XDMCP sessions
    Resolves: #1693060
    [3.28.2-13]
  • Fix login on s390
    Resolves: #1680060
    libX11
    [1.6.7-2]
  • Restore the less-alarming server-disconnect message
    [1.6.7-1]
  • libX11 1.6.7
    [1.6.5-3]
  • Make the server-disconnect message less alarming
    libxkbcommon
    [0.7.1-3]
  • Actually apply the patch files
    [0.7.1-2]
  • Fixes for
    CVE-2018-15864, CVE-2018-15863, CVE-2018-15862, CVE-2018-15861,
    CVE-2018-15859 CVE-2018-15857, CVE-2018-15856, CVE-2018-15855,
    CVE-2018-15854, CVE-2018-15853
    mesa-libGLw
    [8.0.0-5]
  • Fix external API symbol visibility
    xorg-x11-drv-ati
    [19.0.1-2]
  • Avoid breakage on Xserver reset (#1674474)
    [19.0.1-1]
  • ati 19.0.1
    xorg-x11-drv-vesa
    [2.4.0-3]
  • Refuse to run on UEFI framebuffers for v3.10 kernels too
    [2.4.0-2]
  • Refuse to run on UEFI framebuffers
    xorg-x11-drv-wacom
    [0.36.1-3]
  • Ratelimit the bug message warnings (#1642197)
    [0.36.1-2]
  • Fix Cintiq 27QHD error message on proximity in (#1642197)
    [0.36.1-1.1]
  • Rebuild for xserver 1.20
    xorg-x11-server
    [1.20.4-7]
  • Fix a segfault with non-PCI platform devices (and other cases)
    [1.20.4-6]
  • Stop VT switching when inactive server dies
    Resolves: #1680120
    [1.20.4-5]
  • Fix a crash in RRProviderAutoConfigGpuScreen
    [1.20.4-3]
  • Backport fix for 1612924 - enabled monitors
    [1.20.4-2]
  • Dont reset last.valuators on slave device switch (#1640207)
    [1.20.4-1]
  • xserver 1.20.4
    [1.20.1-7]
  • Sync platform probe patch with upstream
    [1.20.1-6]
  • Move LeaveVT after resetting randr pointers in xf86CrtcCloseScreen
    [1.20.1-5.1]
  • CVE-2018-14665: Disable -logfile and -modulepath when running with elevated
    privileges

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.072 Low

EPSS

Percentile

93.4%