Wednesday, June 5, 2013

[USN-1858-1] libxfixes vulnerability

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=rwiJ
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1858-1
June 05, 2013

libxfixes vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS

Summary:

Several security issues were fixed in libxfixes.

Software Description:
- libxfixes: X11 miscellaneous fixes extension library

Details:

Ilja van Sprundel discovered multiple security issues in various X.org
libraries and components. An attacker could use these issues to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libxfixes3 1:5.0-4ubuntu5.13.04.1

Ubuntu 12.10:
libxfixes3 1:5.0-4ubuntu5.12.10.1

Ubuntu 12.04 LTS:
libxfixes3 1:5.0-4ubuntu4.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1858-1
CVE-2013-1983

Package Information:
https://launchpad.net/ubuntu/+source/libxfixes/1:5.0-4ubuntu5.13.04.1
https://launchpad.net/ubuntu/+source/libxfixes/1:5.0-4ubuntu5.12.10.1
https://launchpad.net/ubuntu/+source/libxfixes/1:5.0-4ubuntu4.1

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)