libx11, libxrender vulnerability

Releases

• Ubuntu 14.10
• Ubuntu 14.04 ESM
• Ubuntu 12.04

Packages

• libx11 - X11 client-side library
• libxrender - X11 Rendering Extension client library

Details

Abhishek Arya discovered that libX11 incorrectly handled memory in the
MakeBigReq macro. A remote attacker could use this issue to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

In addition, following the macro fix in libx11, a number of other packages
have also been rebuilt as security updates including libxrender, libxext,
libxi, libxfixes, libxrandr, libsdl1.2, libxv, libxp, and
xserver-xorg-video-vmware.