Ubuntu Security Notice USN-3456-1

Ubuntu Security Notice USN-3456-1: Posted Oct 17, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3456-1 - It was discovered that the X.Org X server incorrectly handled certain lengths. An attacker able to connect to an X server, either locally or remotely, could use these issues to crash the server, or possibly execute arbitrary code.; tags | advisory, arbitrary; systems | linux, ubuntu; advisories | CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179, CVE-2017-12180, CVE-2017-12181, CVE-2017-12182, CVE-2017-12183, CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187; SHA-256 | ae7f1eae80900b7f7dfcf04b648d771c3b13b3d6314ba66e63f1427820c9d84b; Download | Favorite | View

Ubuntu Security Notice USN-3456-1

==========================================================================
Ubuntu Security Notice USN-3456-1
October 17, 2017

xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 17.04
- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in the X.Org X server.

Software Description:
- xorg-server: X.Org X11 server
- xorg-server-hwe-16.04: X.Org X11 server
- xorg-server-lts-xenial: X.Org X11 server

Details:

It was discovered that the X.Org X server incorrectly handled certain
lengths. An attacker able to connect to an X server, either locally or
remotely, could use these issues to crash the server, or possibly execute
arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
  xserver-xorg-core               2:1.19.3-1ubuntu1.3

Ubuntu 16.04 LTS:
  xserver-xorg-core               2:1.18.4-0ubuntu0.7
  xserver-xorg-core-hwe-16.04     2:1.19.3-1ubuntu1~16.04.4

Ubuntu 14.04 LTS:
  xserver-xorg-core               2:1.15.1-0ubuntu2.11
  xserver-xorg-core-lts-xenial    2:1.18.3-1ubuntu2.3~trusty4

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
  https://www.ubuntu.com/usn/usn-3456-1
  CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179,
  CVE-2017-12180, CVE-2017-12181, CVE-2017-12182, CVE-2017-12183,
  CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187

Package Information:
  https://launchpad.net/ubuntu/+source/xorg-server/2:1.19.3-1ubuntu1.3
  https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4-0ubuntu0.7

https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.19.3-1ubuntu1~16.04.4
  https://launchpad.net/ubuntu/+source/xorg-server/2:1.15.1-0ubuntu2.11

https://launchpad.net/ubuntu/+source/xorg-server-lts-xenial/2:1.18.3-1ubuntu2.3~trusty4

Top Authors In Last 30 Days

Red Hat 270 files
indoushka 155 files
Jay Turla 150 files
Ubuntu 66 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Debian 22 files

File Archives

Systems

AIX (430)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,118)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,096)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,754)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,812)
UNIX (9,453)
UnixWare (188)
Windows (6,765)
Other

Ubuntu Security Notice USN-3456-1

Ubuntu Security Notice USN-3456-1

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-3456-1

Share This

Ubuntu Security Notice USN-3456-1

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems