MGASA-2020-0349 - Updated libx11 packages fix security vulnerability Publication date: 27 Aug 2020 URL: https://advisories.mageia.org/MGASA-2020-0349.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-14363 There is an integer overflow and a double free vulnerability in the way LibX11 handles locales. The integer overflow is a necessary precursor to the double free (CVE-2020-14363). References: - https://bugs.mageia.org/show_bug.cgi?id=27205 - https://lists.x.org/archives/xorg-announce/2020-August/003053.html - https://lists.x.org/archives/xorg-announce/2020-August/003057.html - https://lists.x.org/archives/xorg-announce/2020-August/003056.html - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14363 SRPMS: - 7/core/libx11-1.6.12-1.mga7
Mageia 2020-0349: libx11 security update
There is an integer overflow and a double free vulnerability in the way LibX11 handles locales
Summary
There is an integer overflow and a double free vulnerability in the way LibX11
handles locales. The integer overflow is a necessary precursor to the double
free (CVE-2020-14363).
References
- https://bugs.mageia.org/show_bug.cgi?id=27205
- https://lists.x.org/archives/xorg-announce/2020-August/003053.html
- https://lists.x.org/archives/xorg-announce/2020-August/003057.html
- https://lists.x.org/archives/xorg-announce/2020-August/003056.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14363
Resolution
MGASA-2020-0349 - Updated libx11 packages fix security vulnerability
SRPMS
- 7/core/libx11-1.6.12-1.mga7
Severity
Publication date: 27 Aug 2020
URL: https://advisories.mageia.org/MGASA-2020-0349.html
Type: security
CVE: CVE-2020-14363
News
HOWTOs
About Us
Powered By
