[USN-3786-2] libxkbcommon vulnerabilities

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

[USN-3786-2] libxkbcommon vulnerabilities

Leonidas S. Barbosa
Ubuntu Security Notice USN-3786-2
November 06, 2018

libxkbcommon vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS


Several security issues were fixed in libxkbcommon.

Software Description:
- libxkbcommon: library interface to the XKB compiler - development


USN-3786-1 fixed several vulnerabilities in libxkbcommon. This
update provides the corresponding update for Ubuntu 18.04 LTS.

Original advisory details:

 It was discovered that libxkbcommon incorrectly handled certain files.
 An attacker could possibly use this issue to cause a denial of
 service. (CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-
 15856, CVE-2018-15857, CVE-2018-15858, CVE-2018-15859, CVE-2018-15861,
 CVE-2018-15862, CVE-2018-15863, CVE-2018-15864)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  libxkbcommon-x11-0              0.8.0-1ubuntu0.1
  libxkbcommon0                   0.8.0-1ubuntu0.1

In general, a standard system update will make all the necessary

  CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-15856,
  CVE-2018-15857, CVE-2018-15858, CVE-2018-15859, CVE-2018-15861,
  CVE-2018-15862, CVE-2018-15863, CVE-2018-15864

Package Information:
ubuntu-security-announce mailing list
[hidden email]
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

signature.asc (836 bytes) Download Attachment