{"schema_version":"1.7.2","id":"OESA-2022-2022","modified":"2022-10-28T11:04:28Z","published":"2022-10-28T11:04:28Z","upstream":["CVE-2022-3555","CVE-2022-3554"],"summary":"libX11 security update","details":"The libX11-devel package contains libraries and header files for libX11.\r\n\r\nSecurity Fix(es):\r\n\r\nA vulnerability was found in X.org libX11 and classified as problematic. This issue affects the function _XFreeX11XCBStructure of the file xcb_disp.c. The manipulation of the argument dpy leads to memory leak. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211055.(CVE-2022-3555)\r\n\r\nA vulnerability has been found in X.org libX11 and classified as problematic. This vulnerability affects the function _XimRegisterIMInstantiateCallback of the file modules/im/ximcp/imsClbk.c. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. VDB-211054 is the identifier assigned to this vulnerability.(CVE-2022-3554)","affected":[{"package":{"ecosystem":"openEuler:20.03-LTS-SP1","name":"libX11","purl":"pkg:rpm/openEuler/libX11\u0026distro=openEuler-20.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.6.9-6.oe1"}]}],"ecosystem_specific":{"aarch64":["libX11-debugsource-1.6.9-6.oe1.aarch64.rpm","libX11-1.6.9-6.oe1.aarch64.rpm","libX11-debuginfo-1.6.9-6.oe1.aarch64.rpm","libX11-devel-1.6.9-6.oe1.aarch64.rpm"],"noarch":["libX11-help-1.6.9-6.oe1.noarch.rpm"],"src":["libX11-1.6.9-6.oe1.src.rpm"],"x86_64":["libX11-debuginfo-1.6.9-6.oe1.x86_64.rpm","libX11-devel-1.6.9-6.oe1.x86_64.rpm","libX11-debugsource-1.6.9-6.oe1.x86_64.rpm","libX11-1.6.9-6.oe1.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:20.03-LTS-SP3","name":"libX11","purl":"pkg:rpm/openEuler/libX11\u0026distro=openEuler-20.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.6.9-6.oe1"}]}],"ecosystem_specific":{"aarch64":["libX11-devel-1.6.9-6.oe1.aarch64.rpm","libX11-1.6.9-6.oe1.aarch64.rpm","libX11-debuginfo-1.6.9-6.oe1.aarch64.rpm","libX11-debugsource-1.6.9-6.oe1.aarch64.rpm"],"noarch":["libX11-help-1.6.9-6.oe1.noarch.rpm"],"src":["libX11-1.6.9-6.oe1.src.rpm"],"x86_64":["libX11-devel-1.6.9-6.oe1.x86_64.rpm","libX11-debuginfo-1.6.9-6.oe1.x86_64.rpm","libX11-debugsource-1.6.9-6.oe1.x86_64.rpm","libX11-1.6.9-6.oe1.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:22.03-LTS","name":"libX11","purl":"pkg:rpm/openEuler/libX11\u0026distro=openEuler-22.03-LTS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.7.2-4.oe2203"}]}],"ecosystem_specific":{"aarch64":["libX11-debuginfo-1.7.2-4.oe2203.aarch64.rpm","libX11-1.7.2-4.oe2203.aarch64.rpm","libX11-devel-1.7.2-4.oe2203.aarch64.rpm","libX11-debugsource-1.7.2-4.oe2203.aarch64.rpm"],"noarch":["libX11-help-1.7.2-4.oe2203.noarch.rpm"],"src":["libX11-1.7.2-4.oe2203.src.rpm"],"x86_64":["libX11-1.7.2-4.oe2203.x86_64.rpm","libX11-devel-1.7.2-4.oe2203.x86_64.rpm","libX11-debugsource-1.7.2-4.oe2203.x86_64.rpm","libX11-debuginfo-1.7.2-4.oe2203.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-2022"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3555"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3554"}],"database_specific":{"severity":"High"}}