Lucene search

K
suseSuseSUSE-SU-2017:1861-1
HistoryJul 14, 2017 - 3:11 p.m.

Security update for xorg-x11-server (important)

2017-07-1415:11:06
lists.opensuse.org
120

0.026 Low

EPSS

Percentile

90.4%

This update for xorg-x11-server fixes the following issues:

  • CVE-2017-10971: Fix endianess handling of GenericEvent to prevent a
    stack overflow by clients. (bnc#1035283)
  • Make sure the type of all events to be sent by ProcXSendExtensionEvent
    are in the allowed range.
  • CVE-2017-10972: Initialize the xEvent eventT with zeros to avoid
    information leakage.