Errata overview
Errata ID 322
Date 2018-11-21
Source package libx11
Fixed in version 2:1.6.4-3+deb9u1
Description 
This update addresses the following issues:
* Crash on invalid reply in XListExtensions in ListExt.c (CVE-2018-14598)
* off-by-one error in XListExtensions in ListExt.c (CVE-2018-14599)
* Out of Bounds write in XListExtensions in ListExt.c (CVE-2018-14600)
Additional notes
CVE ID CVE-2018-14598
CVE-2018-14599
CVE-2018-14600
UCS Bug number #48180