You are here
Home > Preporuke > Sigurnosni nedostaci programskih biblioteka X11R7.7

Sigurnosni nedostaci programskih biblioteka X11R7.7

by ncert - 0

——————————————————————————–
Fedora Update Notification
FEDORA-2016-ff5a2f4839
2016-10-09 02:26:44.529906
——————————————————————————–

Name : libXfixes
Product : Fedora 24
Version : 5.0.3
Release : 1.fc24
URL : http://www.x.org
Summary : X Fixes library
Description :
X Fixes library.

——————————————————————————–
Update Information:

Security fix for CVE-2016-7944
——————————————————————————–
References:

[ 1 ] Bug #1381865 – CVE-2016-7944 libXfixes: Insufficient validation of server responses results in Integer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1381865
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXfixes’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2016-83040426d6
2016-10-09 02:26:44.529777
——————————————————————————–

Name : libXrandr
Product : Fedora 24
Version : 1.5.1
Release : 1.fc24
URL : http://www.x.org
Summary : X.Org X11 libXrandr runtime library
Description :
X.Org X11 libXrandr runtime library

——————————————————————————–
Update Information:

Security fix for CVE-2016-7947, CVE-2016-7948
——————————————————————————–
References:

[ 1 ] Bug #1381872 – CVE-2016-7947 libXrandr: Insufficient validation of server responses result in Integer overflows
https://bugzilla.redhat.com/show_bug.cgi?id=1381872
[ 2 ] Bug #1381873 – CVE-2016-7948 libXrandr: Insufficient validation of server responses result in various data mishandlings
https://bugzilla.redhat.com/show_bug.cgi?id=1381873
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXrandr’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2016-cabb6d7ef7
2016-10-09 02:26:44.529711
——————————————————————————–

Name : libXi
Product : Fedora 24
Version : 1.7.7
Release : 1.fc24
URL : http://www.x.org
Summary : X.Org X11 libXi runtime library
Description :
X.Org X11 libXi runtime library

——————————————————————————–
Update Information:

Security fix for CVE-2016-7945, CVE-2016-7946
——————————————————————————–
References:

[ 1 ] Bug #1381868 – CVE-2016-7945 libXi: Insufficient validation of server responses result in Integer overflows
https://bugzilla.redhat.com/show_bug.cgi?id=1381868
[ 2 ] Bug #1381869 – CVE-2016-7946 libXi: Insufficient validation of server responses result in various data mishandlings
https://bugzilla.redhat.com/show_bug.cgi?id=1381869
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXi’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2016-c1d4b1df79
2016-10-09 02:26:44.529641
——————————————————————————–

Name : libXtst
Product : Fedora 24
Version : 1.2.3
Release : 1.fc24
URL : http://www.x.org
Summary : X.Org X11 libXtst runtime library
Description :
X.Org X11 libXtst runtime library

——————————————————————————–
Update Information:

Security fix for CVE-2016-7951, CVE-2016-7952
——————————————————————————–
References:

[ 1 ] Bug #1381919 – CVE-2016-7951 libXtst: Insufficient validation of server responses result in Integer overflows
https://bugzilla.redhat.com/show_bug.cgi?id=1381919
[ 2 ] Bug #1381922 – CVE-2016-7952 libXtst: Insufficient validation of server responses result in various data mishandlings
https://bugzilla.redhat.com/show_bug.cgi?id=1381922
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXtst’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2016-8877cf648b
2016-10-09 02:26:44.529578
——————————————————————————–

Name : libXrender
Product : Fedora 24
Version : 0.9.10
Release : 1.fc24
URL : http://www.x.org
Summary : X.Org X11 libXrender runtime library
Description :
X.Org X11 libXrender runtime library

——————————————————————————–
Update Information:

Security fix for CVE-2016-7949, CVE-2016-7950
——————————————————————————–
References:

[ 1 ] Bug #1381927 – CVE-2016-7949 libXrender: Insufficient validation of server responses results in overflow of previously reserved memory
https://bugzilla.redhat.com/show_bug.cgi?id=1381927
[ 2 ] Bug #1381928 – CVE-2016-7950 libXrender: Insufficient validation of server responses results out-of-bounds write in XRenderQueryFilters
https://bugzilla.redhat.com/show_bug.cgi?id=1381928
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXrender’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2016-a236cb3315
2016-10-09 02:26:44.529510
——————————————————————————–

Name : libXvMC
Product : Fedora 24
Version : 1.0.10
Release : 1.fc24
URL : http://www.x.org
Summary : X.Org X11 libXvMC runtime library
Description :
X.Org X11 libXvMC runtime library

——————————————————————————–
Update Information:

Security fix for CVE-2016-7953
——————————————————————————–
References:

[ 1 ] Bug #1381933 – CVE-2016-7953 libXvMC: Insufficient validation of server responses results in buffer underflow
https://bugzilla.redhat.com/show_bug.cgi?id=1381933
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXvMC’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2016-5aa206bd16
2016-10-09 02:26:44.529418
——————————————————————————–

Name : libXv
Product : Fedora 24
Version : 1.0.11
Release : 1.fc24
URL : http://www.x.org
Summary : X.Org X11 libXv runtime library
Description :
X.Org X11 libXv runtime library

——————————————————————————–
Update Information:

Security fix for CVE-2016-5407
——————————————————————————–
References:

[ 1 ] Bug #1381931 – CVE-2016-5407 libXv: Insufficient validation of server responses results in out-of bounds accesses
https://bugzilla.redhat.com/show_bug.cgi?id=1381931
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libXv’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

ncert
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa python-pillow

Otkriven je sigurnosni nedostatak u programskom paketu python-pillow za Fedoru. Otkriveni nedostatak posljedica je cjelobrojnog prepisivanja čemu prethodi narušavanje integriteta...

Close