You are here
Home > Preporuke > Sigurnosni nedostaci programske biblioteke libxcursor

Sigurnosni nedostaci programske biblioteke libxcursor

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-3501-1
November 29, 2017

libxcursor vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 17.10
– Ubuntu 17.04
– Ubuntu 16.04 LTS
– Ubuntu 14.04 LTS

Summary:

libxcursor could be made to crash or run programs if it opened a specially
crafted file.

Software Description:
– libxcursor: X11 cursor management library

Details:

It was discovered that libxcursor incorrectly handled certain files. An
attacker could use these issues to cause libxcursor to crash, resulting in
a denial of service, or possibly execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.10:
libxcursor1 1:1.1.14-3ubuntu0.1

Ubuntu 17.04:
libxcursor1 1:1.1.14-1ubuntu0.17.04.1

Ubuntu 16.04 LTS:
libxcursor1 1:1.1.14-1ubuntu0.16.04.1

Ubuntu 14.04 LTS:
libxcursor1 1:1.1.14-1ubuntu0.14.04.1

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
https://www.ubuntu.com/usn/usn-3501-1
CVE-2017-16612

Package Information:
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.14-3ubuntu0.1
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.14-1ubuntu0.17.04.1
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.14-1ubuntu0.16.04.1
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.14-1ubuntu0.14.04.1

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2

iQIcBAEBCgAGBQJaHwXXAAoJEGVp2FWnRL6TxCQQAJVze3B61jic6GjxYfTQFhCF
L+gsXcvu2nohT0McmDB+7feNBrJ7o5fDLfKtg7Bv6PZhIRT/xUgIaOoC9rEfxpTe
uqqaq72sxF3yFnmBnOJkPpa4KSOlFQPKrsvkw8PjhXJvWI/511oxNqoO2omlAfnU
E7HtXSIkXd+zE8SvvwH9Iae8EWewp9tqivArgNELzcp0Kk7au7cFvHmy8m7++8pM
QCtR8PhP6I5xQnIGKuHzV4u2WVuYHitZRM0TUsRKbYT/i9p555vmS37wxV0l2Qrn
xy/O9+b6r2mxzZSyQPkYvPmO4TGD8vrie3tvt6Ef+JMfQWIVfHZLYoeO/eBMtsdC
83f8fEHURj/YkOYcVPaJ4uWhXA1PbaBlpVGvAzHo5AkIFTxr6mxRXQGNicFMPZcb
k3nBlqR/Xi5Y65fWSubU2gLnU4UKVoGm2EwCiJOHD/sDaE0sJKmYmM2p9ehUJ8p8
/+YupWOUXnND8cAX0fC57FD5eS/4Pa+JnAIsyPu9ZX8wgjIB17Drxqvn02c2BjLS
r2ps/Ovsc8UX+Kw1Tt4KftSUMgAB6lpEJUM9ZYTV5m3NoXEryLH0CnpVMT7z/d8H
w+/adhoWqYwHliTOb9BSzEBItI21RdNAUrjmp0h+D6fqBORz4cvWnNneB92fYogk
9/BPXwvlElgj6gCQTGCF
=jf7k
—–END PGP SIGNATURE—–

AutorPetar Bertok
Cert idNCERT-REF-2017-11-0207-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa exim4

Otkriven je sigurnosni nedostatak u programskom paketu exim4 operacijskog sustava Ubuntu. Otkriveni nedostatak potencijalnim udaljenim napadačima omogućuje izvođenje napada uskraćivanjem...

Close