Overview Details Repositories Revisions Requests Users Attributes Meta
update for libXi

This update of libXi fixes several integer overflow issues.
- U_0001-integer-overflow-in-XGetDeviceControl-CVE-2013-1984-.patch,
U_0002-integer-overflow-in-XGetFeedbackControl-CVE-2013-198.patch,
U_0003-integer-overflow-in-XGetDeviceDontPropagateList-CVE-.patch,
U_0004-integer-overflow-in-XGetDeviceMotionEvents-CVE-2013-.patch,
U_0005-integer-overflow-in-XIGetProperty-CVE-2013-1984-5-8.patch,
U_0006-integer-overflow-in-XIGetSelectedEvents-CVE-2013-198.patch,
U_0007-Avoid-integer-overflow-in-XGetDeviceProperties-CVE-2.patch,
U_0008-Avoid-integer-overflow-in-XListInputDevices-CVE-2013.patch
* integer overflow in various functions [CVE-2013-1984]
(bnc#821663, bnc#815451)
- U_0001-sign-extension-issue-in-XListInputDevices-CVE-2013-1.patch
* sign extension issue in XListInputDevices() [CVE-2013-1995]
(bnc#821663, bnc#815451)
- U_0001-Stack-buffer-overflow-in-XGetDeviceButtonMapping-CVE.patch,
U_0002-memory-corruption-in-_XIPassiveGrabDevice-CVE-2013-1.patch,
U_0003-unvalidated-lengths-in-XQueryDeviceState-CVE-2013-19.patch
* Stack buffer overflow in XGetDeviceButtonMapping(),
memory corruption in _XIPassiveGrabDevice(),
unvalidated lengths in XQueryDeviceState() [CVE-2013-1998]
(bnc#821663, bnc#815451)

Fixed bugs
bnc#821663
VUL-0: xorg-x11-libs: X.Org Security Advisory: May 23, 2013
bnc#815451
VUL-0: xorg: upcoming fixes for xlib
CVE-CVE-2013-1998
CVE-CVE-2013-1984
CVE-CVE-2013-1995
Selected Binaries
openSUSE Build Service is sponsored by
Places