Wednesday, June 5, 2013

[USN-1870-1] libxxf86vm vulnerability

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=fCYL
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1870-1
June 05, 2013

libxxf86vm vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS

Summary:

Several security issues were fixed in libxxf86vm.

Software Description:
- libxxf86vm: X11 XFree86 video mode extension library

Details:

Ilja van Sprundel discovered multiple security issues in various X.org
libraries and components. An attacker could use these issues to cause
applications to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libxxf86vm1 1:1.1.2-1ubuntu0.13.04.1

Ubuntu 12.10:
libxxf86vm1 1:1.1.2-1ubuntu0.12.10.1

Ubuntu 12.04 LTS:
libxxf86vm1 1:1.1.1-2ubuntu0.1

Ubuntu 10.04 LTS:
libxxf86vm1 1:1.1.0-2ubuntu0.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1870-1
CVE-2013-2001

Package Information:
https://launchpad.net/ubuntu/+source/libxxf86vm/1:1.1.2-1ubuntu0.13.04.1
https://launchpad.net/ubuntu/+source/libxxf86vm/1:1.1.2-1ubuntu0.12.10.1
https://launchpad.net/ubuntu/+source/libxxf86vm/1:1.1.1-2ubuntu0.1
https://launchpad.net/ubuntu/+source/libxxf86vm/1:1.1.0-2ubuntu0.1

No comments:

Post a Comment