Wednesday, June 5, 2013

[USN-1859-1] libxi vulnerabilities

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=hgcv
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1859-1
June 05, 2013

libxi vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS

Summary:

Several security issues were fixed in libxi.

Software Description:
- libxi: X11 Input extension library

Details:

Ilja van Sprundel discovered multiple security issues in various X.org
libraries and components. An attacker could use these issues to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libxi6 2:1.6.99.1-0ubuntu3.1

Ubuntu 12.10:
libxi6 2:1.6.1-1ubuntu0.1

Ubuntu 12.04 LTS:
libxi6 2:1.6.0-0ubuntu2.1

Ubuntu 10.04 LTS:
libxi6 2:1.3-3ubuntu0.2

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1859-1
CVE-2013-1984, CVE-2013-1995, CVE-2013-1998

Package Information:
https://launchpad.net/ubuntu/+source/libxi/2:1.6.99.1-0ubuntu3.1
https://launchpad.net/ubuntu/+source/libxi/2:1.6.1-1ubuntu0.1
https://launchpad.net/ubuntu/+source/libxi/2:1.6.0-0ubuntu2.1
https://launchpad.net/ubuntu/+source/libxi/2:1.3-3ubuntu0.2

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)