USN-5437-1: libXfixes vulnerability
23 May 2022
libXfixes could be made to crash or run programs if it received specially crafted input.
Releases
Packages
- libxfixes - X11 miscellaneous fixes extension library
Details
Tobias Stoeckmann discovered that libXfixes incorrectly handled certain
inputs. An attacker could possibly use this issue to cause a denial
of service, or possibly execute arbitrary code.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04
-
libxfixes3
-
1:5.0.1-2ubuntu0.1~esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.