[USN-5428-1] libXrandr vulnerabilities


========================================================================== Ubuntu Security Notice USN-5428-1 May 18, 2022
libxrandr vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 16.04 ESM
Summary:
Several security issues were fixed in libXrandr.
Software Description: – libxrandr: X11 RandR extension library
Details:
Tobias Stoeckmann discovered that libXrandr incorrectly handled certain responses. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code. (CVE-2016-7947, CVE-2016-7948)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04 ESM: libxrandr2 2:1.5.0-1ubuntu0.1~esm1
In general, a standard system update will make all the necessary changes.
References: ubuntu.com/security/notices/USN-5428-1 CVE-2016-7947, CVE-2016-7948