Advisories » MGASA-2018-0364

Updated libxcursor packages fix security vulnerability

Publication date: 31 Aug 2018
Modification date: 31 Aug 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2015-9262

Description

Updated libxcursor packages fix security vulnerability

_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows
remote attackers to cause denial of service or potentially code execution
via a one-byte heap overflow. (CVE-2015-9262)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=23478
• http://openwall.com/lists/oss-security/2018/08/22/6
• https://usn.ubuntu.com/3729-1/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9262

SRPMS

6/core

• libxcursor-1.1.14-6.2.mga6