-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 03 Oct 2023 11:01:59 +0200 Source: libx11 Binary: libx11-6 libx11-6-dbgsym libx11-6-udeb libx11-dev libx11-xcb-dev libx11-xcb1 libx11-xcb1-dbgsym Architecture: s390x Version: 2:1.7.2-1+deb11u2 Distribution: bullseye-security Urgency: medium Maintainer: s390x Build Daemon (zani) Changed-By: Julien Cristau Description: libx11-6 - X11 client-side library libx11-6-udeb - X11 client-side library (udeb) libx11-dev - X11 client-side library (development headers) libx11-xcb-dev - Xlib/XCB interface library (development headers) libx11-xcb1 - Xlib/XCB interface library Changes: libx11 (2:1.7.2-1+deb11u2) bullseye-security; urgency=medium . * CVE-2023-43785: out-of-bounds memory access in _XkbReadKeySyms() * CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage() * CVE-2023-43787: integer overflow in XCreateImage() leading to a heap overflow * XPutImage: clip images to maximum height & width allowed by protocol * XCreatePixmap: trigger BadValue error for out-of-range dimensions Checksums-Sha1: 261fc69e5a7e2d2be2bfaa75e8ca6cf1a9e9e480 1123556 libx11-6-dbgsym_1.7.2-1+deb11u2_s390x.deb 25d055957b619341e213de8adae01cca16778e04 538080 libx11-6-udeb_1.7.2-1+deb11u2_s390x.udeb 3187165c17efc0e72985fde84741500c24848913 737980 libx11-6_1.7.2-1+deb11u2_s390x.deb dcadbce2b33f7fce4264e2730845e4da792172c0 811756 libx11-dev_1.7.2-1+deb11u2_s390x.deb f8a06ad9f2cae9b24d4d0bc4a8eb4f73f521a93d 205764 libx11-xcb-dev_1.7.2-1+deb11u2_s390x.deb bc0726094804310f0457d2a453e82e1079a0c4bf 16652 libx11-xcb1-dbgsym_1.7.2-1+deb11u2_s390x.deb 74ca9f041e56fb44e79610e879d58ec42efe396c 203468 libx11-xcb1_1.7.2-1+deb11u2_s390x.deb 96db83d86ce889f589a61deddd6fad6ba729a22a 8002 libx11_1.7.2-1+deb11u2_s390x-buildd.buildinfo Checksums-Sha256: d3a0dac62d974f70b13b656c43442ed0ff97b704d2fd2c9132e9ca3421230864 1123556 libx11-6-dbgsym_1.7.2-1+deb11u2_s390x.deb d1e2af8632e7173d5686576f4e826fa28ed1d3e4f5f9bc480733f1806a93cc77 538080 libx11-6-udeb_1.7.2-1+deb11u2_s390x.udeb 101931aaf96afacb203f7ef95616257bfe09d483b476bcaf24a34c51ddc953cc 737980 libx11-6_1.7.2-1+deb11u2_s390x.deb e9ed5506f786d96013e4b48d2c4f3790c48bd57a89400692a2c6e4dfab3252f1 811756 libx11-dev_1.7.2-1+deb11u2_s390x.deb 5149b09b71ba0983b710150d32ab0062ffd0ad473c77f28796602760508a020c 205764 libx11-xcb-dev_1.7.2-1+deb11u2_s390x.deb 46c1a19a5c4ec0c331e104f274d0e0cf8f5153c7c942d7f980cbf831eecc3bd3 16652 libx11-xcb1-dbgsym_1.7.2-1+deb11u2_s390x.deb 6e4778ec7ec773c4ae75fc458ae2c61afe32b150f76edd40a1f214244c833078 203468 libx11-xcb1_1.7.2-1+deb11u2_s390x.deb 12eccb533678c9d222a8f5982e71a2a6af6870b5c68283b1546cddfc86c606dd 8002 libx11_1.7.2-1+deb11u2_s390x-buildd.buildinfo Files: 0151d68a2cc38bc1ebe9c485fb437168 1123556 debug optional libx11-6-dbgsym_1.7.2-1+deb11u2_s390x.deb ff5143bcb100e58fc9a7f271394a0ed2 538080 debian-installer optional libx11-6-udeb_1.7.2-1+deb11u2_s390x.udeb f4d9595f609a70d2ea9ee6514aac1489 737980 libs optional libx11-6_1.7.2-1+deb11u2_s390x.deb 6d3df82a445e7a42a1cbf42b23398022 811756 libdevel optional libx11-dev_1.7.2-1+deb11u2_s390x.deb c53a17ccad38a5f5a3e0cbe49efd4670 205764 libdevel optional libx11-xcb-dev_1.7.2-1+deb11u2_s390x.deb 36853af4ebbdadc777c5eaa19a873495 16652 debug optional libx11-xcb1-dbgsym_1.7.2-1+deb11u2_s390x.deb 9649ef36cf44924b6cb1e5c62e2a1ee0 203468 libs optional libx11-xcb1_1.7.2-1+deb11u2_s390x.deb 8bf18162507bdc1580c4390c1231d642 8002 x11 optional libx11_1.7.2-1+deb11u2_s390x-buildd.buildinfo Package-Type: udeb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEETdQgQHyJW2hcXsTC6b+AMjGgQHgFAmUb3y0ACgkQ6b+AMjGg QHgjkxAAgldGr8+dJWOwt8pwmE2JgE4jvkXpZfKHuP6Qnrgi/MPsxFDrWjgcGiJb yKqwVQu48KiYeC6R+AO4OSqgB99WGRaVnteE8SFkYHefmxUHud/jxhAe6aAk+Mhe ouH40IJ4i2O0l9foykMM38LF0oWTOkiFdGyoOXQz6l1LLJLZ7gLCPsaGbWwJMCZg xTHUy6II7pvW9h3qoJY2sLchYut7aq7N5gJjH24EOW2w5ZJIiN1ZswgMIzuDk2gP 8XJaoOjuVmntC0x41FBwGopBXHYbdsibXVxnuZqs6XaufgltCCRXjLIZPC5Y7nMJ AnARU7vJ0uLehpzxhJV20cFcma1UDlt0iu5EN3PscoiwO7Ib7msYUjMtZ994eNtb YRyxaeyAcLgkidaf/sbN0l8qCVulMJaCU8BwQytuwzMaQMWmn5FK2l+0vzvhUzNJ DoqK/sxBggjCVKhrByWrSAuURLvB72TBG6LGhEroCpILyEQ7Tn9gpv/39ERlMkHC UFPe1Y8nlddZ7OF9b6kLe2GkCoC2Gr8oxByy1OkcEKjMVS+bHngEYaZ8z4eOc3oi hc2d+bFdIdIlGbw2LP842X+bqxmysKiJuTY2B5PQ3JTWzWK9uoEIPk8QjSX9X/uH uk3RHZlwGx5Q0l/AysApw9RXL3DQVkju8unIyvglKJgdo/6mNfg= =5m0f -----END PGP SIGNATURE-----