diff options
author | herrb <herrb@web> | 2020-12-01 16:13:34 +0000 |
---|---|---|
committer | IkiWiki <ikiwiki.info> | 2020-12-01 16:13:34 +0000 |
commit | fb677d5b321b559bfc1559d9fb630e9419baaff8 (patch) | |
tree | a768c1511464724d8bee5dcca2ee17ef0f3960be /Development | |
parent | 6121d976d8b47283c4933d71821fa87f752645a1 (diff) |
Today's advisory
Diffstat (limited to 'Development')
-rw-r--r-- | Development/Security.mdwn | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/Development/Security.mdwn b/Development/Security.mdwn index 84155636..09c7c9e8 100644 --- a/Development/Security.mdwn +++ b/Development/Security.mdwn @@ -9,6 +9,10 @@ While the advisories are listed below by the most recent release they affect, mo See the [[Security Checklist|Development/Security/Checklist]] for the list of things to go from a bug report to a released advisory. ## X.Org 7.7 +* December 1, 2020 Multiple input validation failures in X server XKB extension + * CVE-2020-14360 / ZDI CAN 11572 XkbSetMap Out-Of-Bounds Access + * CVE-2020-25712 / ZDI-CAN-11839 XkbSetDeviceInfo Heap-based Buffer Overflow + * Please see [[the advisory|https://lists.x.org/archives/xorg-announce/2020-December/003066.html]] for more information * August 25, 2020 Multiple input validation failures in X server extensions * CVE-2020-14345 / ZDI CAN 11428: XkbSetNames Out-Of-Bounds Access. The handler for the XkbSetNames request does not validate the request length before accessing its contents. |