-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 03 Oct 2023 11:01:59 +0200
Source: libx11
Binary: libx11-data libx11-doc
Architecture: all
Version: 2:1.7.2-1+deb11u2
Distribution: bullseye-security
Urgency: medium
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Julien Cristau <jcristau@debian.org>
Description:
 libx11-data - X11 client-side library
 libx11-doc - X11 client-side library (development documentation)
Changes:
 libx11 (2:1.7.2-1+deb11u2) bullseye-security; urgency=medium
 .
   * CVE-2023-43785: out-of-bounds memory access in _XkbReadKeySyms()
   * CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage()
   * CVE-2023-43787: integer overflow in XCreateImage() leading to a heap overflow
   * XPutImage: clip images to maximum height & width allowed by protocol
   * XCreatePixmap: trigger BadValue error for out-of-range dimensions
Checksums-Sha1:
 c4f098ce4ded3787ae4dcffd2270476a07697419 310852 libx11-data_1.7.2-1+deb11u2_all.deb
 edcfb7cd39ec9d0dcfa43fe3014d045488bd1bee 2230680 libx11-doc_1.7.2-1+deb11u2_all.deb
 302efe538f448f923d6ab5d0c6a14fab78fade5f 6918 libx11_1.7.2-1+deb11u2_all-buildd.buildinfo
Checksums-Sha256:
 9db24e1e7ed3cd738b503e7df5c1b9b52b1eadcb55019cd63b1409e578565d29 310852 libx11-data_1.7.2-1+deb11u2_all.deb
 0d515c081838bffdba7770d2507951eed186bda646afd900b1c0a73b36c5de11 2230680 libx11-doc_1.7.2-1+deb11u2_all.deb
 66dc94b46285f141b9a3e1d3964aa12e096f6452bc9b4f85461610b83acb7a45 6918 libx11_1.7.2-1+deb11u2_all-buildd.buildinfo
Files:
 8d9958895cda11fb6f27b3179de3da55 310852 x11 optional libx11-data_1.7.2-1+deb11u2_all.deb
 d8b45102cb6c972647f36bd2b561bf1c 2230680 doc optional libx11-doc_1.7.2-1+deb11u2_all.deb
 c429b9ee9ff1551cf384edca375c7af2 6918 x11 optional libx11_1.7.2-1+deb11u2_all-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=uL1f
-----END PGP SIGNATURE-----