Overview

File _patchinfo of Package patchinfo.7379

<patchinfo incident="7379">
  <issue id="1063041" tracker="bnc">VUL-0: CVE-2017-12176: xorg-x11-server: Unvalidated extra length in ProcEstablishConnection</issue>
  <issue id="1063040" tracker="bnc">VUL-0: CVE-2017-12177: xorg-x11-server: dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo</issue>
  <issue id="1063039" tracker="bnc">VUL-0: CVE-2017-12178: xorg-x11-server: Xi: fix wrong extra length check in ProcXIChangeHierarchy</issue>
  <issue id="1063038" tracker="bnc">VUL-0: CVE-2017-12179: xorg-x11-server: Xi: integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer</issue>
  <issue id="1063037" tracker="bnc">VUL-0: CVE-2017-12180,CVE-2017-12181,CVE-2017-12182: xorg-x11-server: Unvalidated lengths in XFree86-VidMode/XFree86-DGA/XFree86-DRI extension</issue>
  <issue id="1063035" tracker="bnc">VUL-0: CVE-2017-12183: xorg-x11-server: Unvalidated lengths in XFIXES extension</issue>
  <issue id="1063034" tracker="bnc">VUL-0: CVE-2017-12184,CVE-2017-12185,CVE-2017-12186,CVE-2017-12187: xorg-x11-server: Unvalidated lengths in multiple extensions</issue>
  <issue id="2017-12176" tracker="cve" />
  <issue id="2017-12177" tracker="cve" />
  <issue id="2017-12178" tracker="cve" />
  <issue id="2017-12179" tracker="cve" />
  <issue id="2017-12180" tracker="cve" />
  <issue id="2017-12181" tracker="cve" />
  <issue id="2017-12182" tracker="cve" />
  <issue id="2017-12183" tracker="cve" />
  <issue id="2017-12184" tracker="cve" />
  <issue id="2017-12185" tracker="cve" />
  <issue id="2017-12186" tracker="cve" />
  <issue id="2017-12187" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>sndirsch</packager>
  <description>This update for xorg-x11-server fixes the following vulnerabilities:

* CVE-2017-12176: Unvalidated extra length in ProcEstablishConnection (bsc#1063041)
* CVE-2017-12177: dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo (bsc#1063040)
* CVE-2017-12178: Xi: fix wrong extra length check in ProcXIChangeHierarchy (bsc#1063039)
* CVE-2017-12179: Xi: integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer (bsc#1063038)
* CVE-2017-12180,CVE-2017-12181,CVE-2017-12182: Unvalidated lengths in XFree86-VidMode/XFree86-DGA/XFree86-DRI extension (bsc#1063037)
* CVE-2017-12183: Unvalidated lengths in XFIXES extension (bsc#1063035)
* CVE-2017-12184,CVE-2017-12185,CVE-2017-12186,CVE-2017-12187: Unvalidated lengths in multiple extensions (bsc#1063034)
</description>
  <summary>Security update for xorg-x11-server</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places