CESA-2019:2079 -- centos 7 xorg-x11-drv-atiID: oval:org.secpod.oval:def:205435 | Date: (C)2020-02-07 (M)2023-12-20 |
Class: PATCH | Family: unix |
X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix: * libX11: Crash on invalid reply in XListExtensions in ListExt.c * libX11: Off-by-one error in XListExtensions in ListExt.c * libX11: Out of Bounds write in XListExtensions in ListExt.c * libxkbcommon: Invalid free in ExprAppendMultiKeysymList resulting in a crash * libxkbcommon: Endless recursion in xkbcomp/expr.c resulting in a crash * libxkbcommon: NULL pointer dereference resulting in a crash * libxkbcommon: NULL pointer dereference when handling xkb_geometry * libxkbcommon: Infinite loop when reaching EOL unexpectedly resulting in a crash * libxkbcommon: NULL pointer dereference when parsing invalid atoms in ExprResolveLhs resulting in a crash * libxkbcommon: NULL pointer dereference in ExprResolveLhs resulting in a crash * libxkbcommon: NULL pointer dereference in LookupModMask resulting in a crash * libxkbcommon: NULL pointer dereference in ResolveStateAndPredicate resulting in a crash * libxkbcommon: NULL pointer dereference in resolve_keysym resulting in a crash For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.