You are here
Home > Preporuke > Sigurnosni nedostatak programske biblioteke libxcursor

Sigurnosni nedostatak programske biblioteke libxcursor

by Marina Dimic Vugec - 0
  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-3729-1
August 06, 2018

libxcursor vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 16.04 LTS
– Ubuntu 14.04 LTS

Summary:

libxcursor could be made to crash or run programs if it opened a
specially crafted file.

Software Description:
– libxcursor: X11 cursor management library

Details:

It was discovered that libxcursor incorrectly handled certain files.
An attacker could possibly use this issue to cause a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
libxcursor1                     1:1.1.14-1ubuntu0.16.04.2

Ubuntu 14.04 LTS:
libxcursor1                     1:1.1.14-1ubuntu0.14.04.2

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
https://usn.ubuntu.com/usn/usn-3729-1
CVE-2015-9262

Package Information:
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.14-1ubuntu0.16.04.2
https://launchpad.net/ubuntu/+source/libxcursor/1:1.1.14-1ubuntu0.14.04.2—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=tWs2
—–END PGP SIGNATURE—–

AutorZvonimir Bosnjak
Cert idNCERT-REF-2018-08-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Marina Dimic Vugec
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa lftp

Otkriven je sigurnosni nedostatak u programskom paketu lftp za operacijski sustav Ubuntu. Otkriveni nedostatak potencijalnim napadačima omogućuje izazivanje DoS stanja....

Close