Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

LibX11 1.6.12 Released Due To Latest Security Advisory

Written by Michael Larabel in X.Org on 25 August 2020 at 11:40 AM EDT. Add A Comment

X.ORG

Not even one month passed since the previous libX11 security vulnerabilities were made public while today a new security advisory was issued along with releasing version 1.6.12 of this key X11 library.

The X.Org code-base is known for being riddled with security issues in its aging and massive code-base. Security researchers have found many bugs in recent years while fortunately today's disclosure isn't too bad.

CVE-2020-14363 is an integer overflow leading to a double free vulnerability in the way that libX11 is handling locales that was discovered by Jayden Rivers.

The fix is simple and both in libX11 Git and the newly-released 1.6.12. The libX11 1.6.12 release also has just four other fixes as well but that is all considering the short time since the prior release.

Add A Comment

Related News

X.Org Server Change Allows GLAMOR To Fallback To Software Rendering For Obsolete GPUs

Explicit GPU Synchronization Merged For XWayland

X.Org Server & XWayland Hit By Four More Security Issues

The X.Org Foundation Needs More Candidates To Hold An Election

X.Org Server Clears Out Remnants For Supporting Old Compilers

X.Org Server & XWayland Updated Due To Another Six Security Vulnerabilities

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

Linux 6.10 To Merge NTSYNC Driver For Emulating Windows NT Synchronization Primitives

Ubuntu Maker Canonical Announces New Collaboration With Qualcomm

Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them

Fedora 41 Looks To "-O3" Optimizations For Its Python Build

APT 2.9 Released: Debian's APT 3.0 To Have A New UI With Colors, Columnar Display & More

KDE's KWin Merges Wayland Explicit Sync Support

Gentoo Linux Now An SPI Project

Open-Source Radeon Driver Enables Support For Vulkan Video H.264/H.265 Encode