Wednesday, June 5, 2013

[USN-1856-1] libxcursor vulnerability

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=2RFW
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1856-1
June 05, 2013

libxcursor vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS

Summary:

Several security issues were fixed in libxcursor.

Software Description:
- libxcursor: X cursor management library

Details:

Ilja van Sprundel discovered multiple security issues in various X.org
libraries and components. An attacker could use these issues to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libxcursor1 1:1.1.13-1ubuntu0.13.04.1

Ubuntu 12.10:
libxcursor1 1:1.1.13-1ubuntu0.12.10.1

Ubuntu 12.04 LTS:
libxcursor1 1:1.1.12-1ubuntu0.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1856-1
CVE-2013-2003

Package Information:
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.13-1ubuntu0.13.04.1
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.13-1ubuntu0.12.10.1
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.12-1ubuntu0.1

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)