Advisories » MGASA-2020-0349

Updated libx11 packages fix security vulnerability

Publication date: 27 Aug 2020
Modification date: 27 Aug 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2020-14363

Description

There is an integer overflow and a double free vulnerability in the way LibX11
handles locales. The integer overflow is a necessary precursor to the double
free (CVE-2020-14363).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=27205
• https://lists.x.org/archives/xorg-announce/2020-August/003053.html
• https://lists.x.org/archives/xorg-announce/2020-August/003057.html
• https://lists.x.org/archives/xorg-announce/2020-August/003056.html
• https://www.cve.org/CVERecord?id=CVE-2020-14363

SRPMS

7/core

• libx11-1.6.12-1.mga7