Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 596
Alerts This Week
Warning Icon 1 596

Fedora 23 FEDORA-2016-49d560da23 Critical Memory Overflow in LibXrender

fedora
Calendar Grey November 1, 2016
Dist Fedora Esm H88
Important notice for Fedora 23 regarding CVE-2016-7949 and CVE-2016-7950. This update concerns the libXrender library, addressing identified memory safety issues.
Security fix for CVE-2016-7949, CVE-2016-7950

Summary

X.Org X11 libXrender runtime library

Update Information:

Security fix for CVE-2016-7949, CVE-2016-7950

Change Log

References


[ 1 ] Bug #1381927 - CVE-2016-7949 libXrender: Insufficient validation of server responses results in overflow of previously reserved memory https://bugzilla.redhat.com/show_bug.cgi?id=1381927 [ 2 ] Bug #1381928 - CVE-2016-7950 libXrender: Insufficient validation of server responses results out-of-bounds write in XRenderQueryFilters https://bugzilla.redhat.com/show_bug.cgi?id=1381928

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libXrender' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libXrender
Product: Fedora 23
Version: 0.9.10
Release: 1.fc23
Summary: X.Org X11 libXrender runtime library

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.