Stay Secure with the Latest Linux Advisories

security advisoryfedoracritical

Fedora 27 FEDORA-2017-b414bd5b99 Critical Wayland Heap Overflow

This update fixes a possible heap overflow when parsing malicious cursor files. See https://lists.freedesktop.org/archives/wayland-devel/2017-November/035979.html for details.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-b414bd5b99 2017-12-19 18:22:41.465593 --------------------------------------------------------------------------------Name : wayland Product : Fedora 27 Version : 1.14.0 Release : 2.fc27 URL : http://wayland.freedesktop.org/ Summary : Wayland Compositor Infrastructure Description : Wayland is a protocol for a compositor to talk to its clients as well as a C library implementation of that protocol. The compositor can be a standalone display server running on Linux kernel modesetting and evdev input devices, an X application, or a wayland client itself. The clients can be traditional applications, X servers (rootless or fullscreen) or other display servers. --------------------------------------------------------------------------------Update Information: This update fixes a possible heap overflow when parsing malicious cursor files. See https://lists.freedesktop.org/archives/wayland-devel/2017-November/035979.html for details. --------------------------------------------------------------------------------References: [ 1 ] Bug #1522638 https://bugzilla.redhat.com/show_bug.cgi?id=1522638 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade wayland' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . This revision resolves a memory corruption vulnerability in Wayland, bolstering defenses against harmful mouse pointer files.. Wayland Heap Overflow Fix,Fedora 27 Security Update,Cursor File Exploit Prevention. . Severity: Critical. LinuxSecurity.com Team

Dec 19, 2017 •Critical Fedora