Overview

File _patchinfo of Package patchinfo.231

<patchinfo incident="231">
  <issue id="907268" tracker="bnc" />
  <issue id="CVE-2014-8099" tracker="cve" />
  <issue id="CVE-2014-8098" tracker="cve" />
  <issue id="CVE-2014-8097" tracker="cve" />
  <issue id="CVE-2014-8096" tracker="cve" />
  <issue id="CVE-2014-8095" tracker="cve" />
  <issue id="CVE-2014-8094" tracker="cve" />
  <issue id="CVE-2014-8093" tracker="cve" />
  <issue id="CVE-2014-8092" tracker="cve" />
  <issue id="CVE-2014-8091" tracker="cve" />
  <issue id="CVE-2014-8101" tracker="cve" />
  <issue id="CVE-2014-8100" tracker="cve" />
  <issue id="CVE-2014-8103" tracker="cve" />
  <issue id="CVE-2014-8102" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>michalsrb</packager>
  <description>This X.Org update fixes the following security issues:

- denial of service due to unchecked malloc in client authentication
  (CVE-2014-8091)
- integer overflows calculating memory needs for requests:
  CVE-2014-8092: X11 core protocol requests
  CVE-2014-8093: GLX extension
  CVE-2014-8094: DRI2 extension
- out of bounds access due to not validating length or offset values in
  requests:
  CVE-2014-8095: XInput extension
  CVE-2014-8096: XC-MISC extension
  CVE-2014-8097: DBE extension
  CVE-2014-8098: GLX extension
  CVE-2014-8099: XVideo extension
  CVE-2014-8100: Render extension
  CVE-2014-8101: RandR extension
  CVE-2014-8102: XFixes extension
  CVE-2014-8103: DRI3 and Present extensions</description>
  <summary>Security update for xorg-x11-server</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places