You are here
Home > Preporuke > Sigurnosni nedostaci programske biblioteke libxkbcommon

Sigurnosni nedostaci programske biblioteke libxkbcommon

==========================================================================
Ubuntu Security Notice USN-3786-2
November 06, 2018

libxkbcommon vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in libxkbcommon.

Software Description:
– libxkbcommon: library interface to the XKB compiler – development
files

Details:

USN-3786-1 fixed several vulnerabilities in libxkbcommon. This
update provides the corresponding update for Ubuntu 18.04 LTS.

Original advisory details:

 It was discovered that libxkbcommon incorrectly handled certain files.
 An attacker could possibly use this issue to cause a denial of
 service. (CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-
 15856, CVE-2018-15857, CVE-2018-15858, CVE-2018-15859, CVE-2018-15861,
 CVE-2018-15862, CVE-2018-15863, CVE-2018-15864)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  libxkbcommon-x11-0              0.8.0-1ubuntu0.1
  libxkbcommon0                   0.8.0-1ubuntu0.1

In general, a standard system update will make all the necessary
changes.

References:
  https://usn.ubuntu.com/usn/usn-3786-2
  https://usn.ubuntu.com/usn/usn-3786-1
  CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-15856,
  CVE-2018-15857, CVE-2018-15858, CVE-2018-15859, CVE-2018-15861,
  CVE-2018-15862, CVE-2018-15863, CVE-2018-15864

Package Information:
  https://launchpad.net/ubuntu/+source/libxkbcommon/0.8.0-1ubuntu0.1—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=oOHA
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostatak programskog paketa 389-ds-base

Otkriven je sigurnosni nedostatak u programskom paketu 389-ds-base za operacijski sustav RHEL. Otkriveni nedostatak potencijalnim napadačima omogućuje izazivanje DoS stanja....

Close