Today's advisory

author: herrb <herrb@web> 2020-12-01 16:13:34 +0000
committer: IkiWiki <ikiwiki.info> 2020-12-01 16:13:34 +0000
commit: fb677d5b321b559bfc1559d9fb630e9419baaff8 (patch)
tree: a768c1511464724d8bee5dcca2ee17ef0f3960be /Development
parent: 6121d976d8b47283c4933d71821fa87f752645a1 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/Development/Security.mdwn b/Development/Security.mdwn
index 84155636..09c7c9e8 100644
--- a/Development/Security.mdwn
+++ b/Development/Security.mdwn
@@ -9,6 +9,10 @@ While the advisories are listed below by the most recent release they affect, mo
 See the [[Security Checklist|Development/Security/Checklist]] for the list of things to go from a bug report to a released advisory.
 
 ## X.Org 7.7
+* December 1, 2020 Multiple input validation failures in X server XKB extension
+ * CVE-2020-14360 / ZDI CAN 11572 XkbSetMap Out-Of-Bounds Access
+ * CVE-2020-25712 / ZDI-CAN-11839 XkbSetDeviceInfo Heap-based Buffer Overflow
+ * Please see [[the advisory|https://lists.x.org/archives/xorg-announce/2020-December/003066.html]] for more information
 
 * August 25, 2020 Multiple input validation failures in X server extensions
    * CVE-2020-14345 / ZDI CAN 11428: XkbSetNames Out-Of-Bounds Access. The handler for the XkbSetNames request does not validate the request length before accessing its contents.
author	herrb <herrb@web>	2020-12-01 16:13:34 +0000
committer	IkiWiki <ikiwiki.info>	2020-12-01 16:13:34 +0000
commit	fb677d5b321b559bfc1559d9fb630e9419baaff8 (patch)
tree	a768c1511464724d8bee5dcca2ee17ef0f3960be /Development
parent	6121d976d8b47283c4933d71821fa87f752645a1 (diff)