You are here
Home > Preporuke > Sigurnosni nedostatak programske biblioteke nx-libs

Sigurnosni nedostatak programske biblioteke nx-libs

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2018-03-13 17:14:38.069777

Name : nx-libs
Product : Fedora 26
Version :
Release : 4.fc26
Summary : NX X11 protocol compression libraries
Description :
NX is a software suite which implements very efficient compression of
the X11 protocol. This increases performance when using X
applications over a network, especially a slow one.

This package provides the core nx-X11 libraries customized for

Update Information:

nx-libs – Don’t allow overriding of X.Org Server UNIX sockets via
TEMP/NX_TEMP environment variables. Fixes problems on machines that use – Fix CVE-2017-2624 (timingsafe_memcmp) by Ulrich Sibiller. –
Potentially improve LAN- and WAN-type connection speed settings scenarios.
Includes a regression fix for VPN connections by Simon Matter. – Fix problems in
mate-color-picker and potentially also other applications that make heavy use of
RENDER trapezoids. x2goserver – Fixed overzealous nxagent socket
removal. – Keyboard mapping fixes, including preparation for usage with
Arctica’s nx-libs version (not supported in this version of X2Go Server, yet). –
Support for Devuan and RT OS full desktop session spawning. – Always use short
host name, don’t rely on ${HOSTNAME} variable. Compatibility with non-bash
login shells. – Spawn full desktop sessions with a new dbus user session
instance. – Finnish translation update. – Added support for LXQt full desktop
sessions. – New command: x2golistshadowsessions.

[ 1 ] Bug #1478974 – x2go killed by systemd
[ 2 ] Bug #1510900 – nx-libs- is available

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade nx-libs’ at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorDanijel Kozinovic
Cert idNCERT-REF-2018-03-0001-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa util-linux

Otkriven je sigurnosni nedostatak u programskom paketu util-linux za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje stjecanje uvećanih ovlasti...