-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4000-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 17, 2017                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : xorg-server
CVE ID         : CVE-2017-12176 CVE-2017-12177 CVE-2017-12178 CVE-2017-12179 
                 CVE-2017-12180 CVE-2017-12181 CVE-2017-12182 CVE-2017-12183 
                 CVE-2017-12184 CVE-2017-12185 CVE-2017-12186 CVE-2017-12187 
                 CVE-2017-13721 CVE-2017-13723

Several vulnerabilities have been discovered in the X.Org X server. An
attacker who's able to connect to an X server could cause a denial of
service or potentially the execution of arbitrary code.

For the oldstable distribution (jessie), these problems have been fixed
in version 2:1.16.4-1+deb8u2.

For the stable distribution (stretch), these problems have been fixed in
version 2:1.19.2-1+deb9u2.

We recommend that you upgrade your xorg-server packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=BLPr
-----END PGP SIGNATURE-----