Debian Security Advisory
DSA-3095-1 xorg-server -- security update
- Date Reported:
- 10 Dec 2014
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2014-8091, CVE-2014-8092, CVE-2014-8093, CVE-2014-8094, CVE-2014-8095, CVE-2014-8096, CVE-2014-8097, CVE-2014-8098, CVE-2014-8099, CVE-2014-8100, CVE-2014-8101, CVE-2014-8102.
- More information:
Ilja van Sprundel of IOActive discovered several security issues in the X.org X server, which may lead to privilege escalation or denial of service.
For the stable distribution (wheezy), these problems have been fixed in version 1.12.4-6+deb7u5.
For the upcoming stable distribution (jessie), these problems will be fixed soon.
For the unstable distribution (sid), these problems have been fixed in version 2:220.127.116.111-1.
We recommend that you upgrade your xorg-server packages.