Wednesday, June 5, 2013

[USN-1866-1] libxtst vulnerability

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iQIcBAEBCgAGBQJRr4OyAAoJEGVp2FWnRL6TehUQAKGaAlNXOvVNyb1Ru8qdbx3h
qbRJBEpKQQp3EFuUlMBWTNI9aVvy1OYRTBN53GS55dfzp9Bfjbxr4MmPTXQpeYOj
4gn0fP0UyIXzxqDCommJxvyOJvEjwXLEAqjrG2rKaqxxFwCNO2crYBAcp5HZPasC
1TZ5U9Tkg1Xp0zSQDWfu16xDwcsrbKvgmltgkTzWJ4JHYdM3e8N3OqH1zMvLc8Jl
hUMIlaN02wUP3naa6dXhyG1q2VhhnPZeA4UJlPi7QjWoVxA3HbBvt3BCyYO1TyUn
Q2d8vVGVWJ3jm5GCfPYL3ZI1vqzdWJ9RUockvDY4nibz/GCMeGfkyabmrsAuFIr3
LDvtHqjMtLlX+fV2SQ3VVSBhlOygl4A3li/JyUWruYYgHUiMYpJ4FitE//NRf4R3
8Mv9lW06zrYQMGuEAaY+6mx9eHuy1JjY0JruqiGBYV72+oziV0HpPcsOIMBHQKiO
FxA4H1GV7jQ5aobRaFpkloX1bLmQ6/jw+Fv15AMXH5jn3oiPfAhAyg3zKjCHAJ5t
e9VAH6OvqQUNwLqsnqWB7hd4HvCk1wWUTHGxbg5UNHH+myIKqzk3w7QyIOZmH9Wr
754wKUN3K/qk6DslEFmXUFXEmBHXuCMmNSJmeIxJxRk4Hq8aMPgT+7L1r/6CXfmP
ncBi1+5umI4yZGHNzNrc
=TCro
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1866-1
June 05, 2013

libxtst vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS

Summary:

Several security issues were fixed in libxtst.

Software Description:
- libxtst: X11 Record extension library

Details:

Ilja van Sprundel discovered multiple security issues in various X.org
libraries and components. An attacker could use these issues to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libxtst6 2:1.2.1-1ubuntu0.13.04.1

Ubuntu 12.10:
libxtst6 2:1.2.1-1ubuntu0.12.10.1

Ubuntu 12.04 LTS:
libxtst6 2:1.2.0-4ubuntu0.1

Ubuntu 10.04 LTS:
libxtst6 2:1.1.0-2ubuntu0.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1866-1
CVE-2013-2063

Package Information:
https://launchpad.net/ubuntu/+source/libxtst/2:1.2.1-1ubuntu0.13.04.1
https://launchpad.net/ubuntu/+source/libxtst/2:1.2.1-1ubuntu0.12.10.1
https://launchpad.net/ubuntu/+source/libxtst/2:1.2.0-4ubuntu0.1
https://launchpad.net/ubuntu/+source/libxtst/2:1.1.0-2ubuntu0.1

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)