Accepted libx11 2:1.6.7-1+deb10u4 (source) into oldoldstable
- To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
- Subject: Accepted libx11 2:1.6.7-1+deb10u4 (source) into oldoldstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Thu, 05 Oct 2023 09:20:20 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: libx11_1.6.7-1+deb10u4_source.changes
- Debian-source: libx11
- Debian-suite: oldoldstable
- Debian-version: 2:1.6.7-1+deb10u4
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=isxQ+q/FdsMQcH/xyTjZFuxDcll9F1xRrOX1PnZZHNY=; b=lF+vAgQkE12upOh4yZLac2gQPp WP6eTBuoF6vXuv2LVSqdTv0flZOngZaVzzItHiexaoWknHZWpfGt5RfyVYJzS7O5DRMoR8S+7a3Zx u+QFk+XmXx6nCAs0fbkqdheqXBeuHkeWQXA1XW3pvZVHK2NsA7H2AoqMcRRg52PVliwHT+RkGvSt5 G3DYZm0/gy2Pjn5GGKZKZ6xUSCHhZjW/q09Hdsc72AucP33ljhNIqH0n1uzDjdeZ+PRD1AX+tb74K yJhBQgpbfOZ4f0fZ/RB6CYnl+gZWYeFq78MONp0AbaP+y9NYtb1XK5GUQRnZNT/8s29fD2+ngQSB3 391VmHLA==;
- Mail-followup-to: debian-lts@lists.debian.org
- Message-id: <E1qoKWq-00ENnu-EM@seger.debian.org>
- Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 04 Oct 2023 17:12:55 +0200
Source: libx11
Architecture: source
Version: 2:1.6.7-1+deb10u4
Distribution: buster-security
Urgency: medium
Maintainer: Debian X Strike Force <debian-x@lists.debian.org>
Changed-By: Emilio Pozuelo Monfort <pochu@debian.org>
Changes:
libx11 (2:1.6.7-1+deb10u4) buster-security; urgency=medium
.
* CVE-2023-43785: out-of-bounds memory access in _XkbReadKeySyms
* CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage
* CVE-2023-43787: integer overflow in XCreateImage
* Add some more patches for extra hardening.
Checksums-Sha1:
1043de0797e378e1856c027f0495bb38be489bee 2410 libx11_1.6.7-1+deb10u4.dsc
0b54b17e757f24791cf9c6994f2c2e92851c824a 2972354 libx11_1.6.7.orig.tar.gz
ba2bef9c6773082bfa17dcd6627647cd88def116 57414 libx11_1.6.7-1+deb10u4.diff.gz
c8bf610e6eddc9e2460f239ad560db9fea9094ca 6384 libx11_1.6.7-1+deb10u4_source.buildinfo
Checksums-Sha256:
04b3214f5376f1d51742e2399c5b3458c34ad9b5ad6f2dc41876a6e46bab0b48 2410 libx11_1.6.7-1+deb10u4.dsc
f62ab88c2a87b55e1dc338726a55bb6ed8048084fe6a3294a7ae324ca45159d1 2972354 libx11_1.6.7.orig.tar.gz
cbf262ac55def260fdf1d8dae689fe28db222130fdc3e305c24bd138ba59ba4a 57414 libx11_1.6.7-1+deb10u4.diff.gz
c506efe124f517638d5ff12552c3b51e3c4078c3a4c9076bd6ecc778b66fe252 6384 libx11_1.6.7-1+deb10u4_source.buildinfo
Files:
243180602584c81ae50450c7fd41914a 2410 x11 optional libx11_1.6.7-1+deb10u4.dsc
31eaf1595bd88fbacaf6b235b93dee50 2972354 x11 optional libx11_1.6.7.orig.tar.gz
111bf5afe4c076698772073b3e65b333 57414 x11 optional libx11_1.6.7-1+deb10u4.diff.gz
97a0632b56896dc54ca26eddf0600389 6384 x11 optional libx11_1.6.7-1+deb10u4_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=9wGU
-----END PGP SIGNATURE-----