Red Hat Security Advisory: Xorg security and bug fix update
🔗 CVE IDs covered (13)
📋 Description
CVE-2018-14598 — libX11: Crash on invalid reply in XListExtensions in ListExt.c CVE-2018-14599 — libX11: Off-by-one error in XListExtensions in ListExt.c CVE-2018-14600 — libX11: Out of Bounds write in XListExtensions in ListExt.c CVE-2018-15853 — libxkbcommon: xkbcomp: Endless recursion in xkbcomp/expr.c resulting in a crash CVE-2018-15854 — libxkbcommon: NULL pointer dereference resulting in a crash CVE-2018-15855 — libxkbcommon: NULL pointer dereference when handling xkb_geometry CVE-2018-15856 — libxkbcommon: Infinite loop when reaching EOL unexpectedly resulting in a crash CVE-2018-15857 — libxkbcommon: Invalid free in ExprAppendMultiKeysymList resulting in a crash CVE-2018-15859 — libxkbcommon: xkbcomp: NULL pointer dereference when parsing invalid atoms in ExprResolveLhs resulting in a crash CVE-2018-15861 — libxkbcommon: xkbcomp: NULL pointer dereference in ExprResolveLhs resulting in a crash CVE-2018-15862 — libxkbcommon: NULL pointer dereference in LookupModMask resulting in a crash CVE-2018-15863 — libxkbcommon: xkbcomp: NULL pointer dereference in ResolveStateAndPredicate resulting in a crash CVE-2018-15864 — libxkbcommon: NULL pointer dereference in resolve_keysym resulting in a crash
🔗 References (29)
- selfhttps://access.redhat.com/errata/RHSA-2019:2079
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1529419
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623009
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623012
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623013
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623018
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623022
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623026
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623028
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623029
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623030
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623033
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623238
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623242
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1623250
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1624847
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1632807
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1635747
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1642197
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1648116
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1650166
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1650634
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1665433
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1674474
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1680120
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1724300
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2079.json