| Errata ID | 364 |
|---|---|
| Date | 2018-05-08 |
| Source package | libxtst |
| Fixed in version | 2:1.2.2-1+deb8u1 |
| Description | This update addresses the following issues: * Multiple integer overflows in libXtst allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks. (CVE-2016-7951) * libXtst allows remote X servers to cause a denial of service (infinite loop) via a reply in the (1) XRecordStartOfData, (2) XRecordEndOfData, or (3) XRecordClientDied category without a client sequence and with attached data. (CVE-2016-7952) |
| Additional notes | |
| CVE ID | CVE-2016-7951 CVE-2016-7952 |
| UCS Bug number | #46148 |
