Security update for libX11 SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:3012-1 Final 1 1 2018-10-05T07:04:02Z current 2018-10-05T07:04:02Z 2018-10-05T07:04:02Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libX11 This update for libX11 fixes the following security issues: - CVE-2018-14599: The function XListExtensions was vulnerable to an off-by-one error caused by malicious server responses, leading to DoS or possibly unspecified other impact (bsc#1102062) - CVE-2018-14600: The function XListExtensions interpreted a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution (bsc#1102068) - CVE-2018-14598: A malicious server could have sent a reply in which the first string overflows, causing a variable to be set to NULL that will be freed later on, leading to DoS (segmentation fault) (bsc#1102073) This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00006.html E-Mail link for openSUSE-SU-2018:3012-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 15.0 libX11-1.6.5-lp150.2.3.1 libX11-6-1.6.5-lp150.2.3.1 libX11-6-32bit-1.6.5-lp150.2.3.1 libX11-data-1.6.5-lp150.2.3.1 libX11-devel-1.6.5-lp150.2.3.1 libX11-devel-32bit-1.6.5-lp150.2.3.1 libX11-xcb1-1.6.5-lp150.2.3.1 libX11-xcb1-32bit-1.6.5-lp150.2.3.1 libX11-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-6-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-6-32bit-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-data-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-devel-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-devel-32bit-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-xcb1-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 libX11-xcb1-32bit-1.6.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL that will be freed later on, leading to DoS (segmentation fault). CVE-2018-14598 openSUSE Leap 15.0:libX11-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-6-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-6-32bit-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-data-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-devel-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-devel-32bit-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-xcb1-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-xcb1-32bit-1.6.5-lp150.2.3.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00006.html https://www.suse.com/security/cve/CVE-2018-14598.html CVE-2018-14598 https://bugzilla.suse.com/1102073 SUSE Bug 1102073 An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c is vulnerable to an off-by-one error caused by malicious server responses, leading to DoS or possibly unspecified other impact. CVE-2018-14599 openSUSE Leap 15.0:libX11-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-6-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-6-32bit-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-data-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-devel-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-devel-32bit-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-xcb1-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-xcb1-32bit-1.6.5-lp150.2.3.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00006.html https://www.suse.com/security/cve/CVE-2018-14599.html CVE-2018-14599 https://bugzilla.suse.com/1102062 SUSE Bug 1102062 An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution. CVE-2018-14600 openSUSE Leap 15.0:libX11-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-6-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-6-32bit-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-data-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-devel-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-devel-32bit-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-xcb1-1.6.5-lp150.2.3.1 openSUSE Leap 15.0:libX11-xcb1-32bit-1.6.5-lp150.2.3.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00006.html https://www.suse.com/security/cve/CVE-2018-14600.html CVE-2018-14600 https://bugzilla.suse.com/1102068 SUSE Bug 1102068