Wednesday, June 5, 2013

[USN-1855-1] libxcb vulnerability

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iQIcBAEBCgAGBQJRr4LeAAoJEGVp2FWnRL6ThigQAIqnu0/MAChrTTPYIgjRA9zB
cNIL7oreMlpWHC1v+LVspzLEybOHH1X8qaPRZ3AOGnglPBy+3SCWS49SYcBd3fsH
v1cBCpf5LiYl7I9m/wJfvXY8hzmA9kWkf/vhYAS5alUmKadX5hyxWNhCq/l70qFe
DnwwAOLncIy+vIn8C+kAQ7GCIPBNhyOI5S4bkN/zq5/pho21xLdZbuTL8WGgYiBE
pGwZHKcFKu/zRVynoE0IJLJeAxbxFTNC7kX+KbhjRggkrvtaZxwN6njYc14nryeh
s6gVC2JpICTsR3gcGdEeE4tAEwSfFYbXLq2+kx9XJ4WxbQft+iMcVriHMfChMMAA
XCf331Io7h3lU7DlaMAqNnTeNRgXdzwo6fDL/4WIKsTx57RS3naO0KBBwWe2PQEq
ZzwEp4NPibCb24wb72gKwDve2uMZGAYqMNslcNRbKUgrADRc/T7NoCmqXprwJ2HN
IU/jqawIsXN8YCK5VnwW1XJ4bKt2H5BZvw007vEjfoPD+XkUYBAck+9WRDDX1979
BTJ/qH9qihOcXPTmn2rz4YSS4MY5ITroJqRW/AHl36TlRJvyhpq5hI+xK/GTtQQq
maI5jbxYOw+ZAoyHx+5DTrWFd/AJQYCHtPn+KfmUJZwoC7gcF5d7YPOCU4m0AVCG
P6ctA4DsetdZweAPXCId
=jZeX
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1855-1
June 05, 2013

libxcb vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS

Summary:

Several security issues were fixed in libxcb.

Software Description:
- libxcb: X C Binding

Details:

Ilja van Sprundel discovered multiple security issues in various X.org
libraries and components. An attacker could use these issues to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libxcb1 1.8.1-2ubuntu2.1

Ubuntu 12.10:
libxcb1 1.8.1-1ubuntu1.1

Ubuntu 12.04 LTS:
libxcb1 1.8.1-1ubuntu0.2

Ubuntu 10.04 LTS:
libxcb1 1.5-2ubuntu0.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1855-1
CVE-2013-2064

Package Information:
https://launchpad.net/ubuntu/+source/libxcb/1.8.1-2ubuntu2.1
https://launchpad.net/ubuntu/+source/libxcb/1.8.1-1ubuntu1.1
https://launchpad.net/ubuntu/+source/libxcb/1.8.1-1ubuntu0.2
https://launchpad.net/ubuntu/+source/libxcb/1.5-2ubuntu0.1

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)