{"affected":[{"ecosystem_specific":{"binaries":[{"xorg-x11-devel":"7.4-8.26.49.1","xorg-x11-devel-32bit":"7.4-8.26.49.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 11 SP4","name":"xorg-x11-libs","purl":"pkg:rpm/suse/xorg-x11-libs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4-8.26.49.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"xorg-x11-libs":"7.4-8.26.49.1","xorg-x11-libs-32bit":"7.4-8.26.49.1","xorg-x11-libs-x86":"7.4-8.26.49.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11 SP4","name":"xorg-x11-libs","purl":"pkg:rpm/suse/xorg-x11-libs&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4-8.26.49.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"xorg-x11-libs":"7.4-8.26.49.1","xorg-x11-libs-32bit":"7.4-8.26.49.1","xorg-x11-libs-x86":"7.4-8.26.49.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 11 SP4","name":"xorg-x11-libs","purl":"pkg:rpm/suse/xorg-x11-libs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4-8.26.49.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThis update for xorg-x11-libs fixes the following issues:\n\n  - insufficient validation of data from the X server can cause a\n    one byte buffer read underrun (bsc#1003023, CVE-2016-7953)\n  - insufficient validation of data from the X server can cause out\n    of boundary memory access or endless loops (Denial of Service)\n    (bsc#1003012, CVE-2016-7951, CVE-2016-7952)\n  - insufficient validation of data from the X server can cause out\n    of boundary memory writes (bsc#1003000, CVE-2016-7947, CVE-2016-7948)\n  - insufficient validation of data from the X server can cause out\n    of boundary memory access or endless loops (Denial of Service).\n    (bsc#1002998, CVE-2016-7945, CVE-2016-7946)\n","id":"SUSE-SU-2016:3189-1","modified":"2016-12-16T17:05:53Z","published":"2016-12-16T17:05:53Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20163189-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1002998"},{"type":"REPORT","url":"https://bugzilla.suse.com/1003000"},{"type":"REPORT","url":"https://bugzilla.suse.com/1003012"},{"type":"REPORT","url":"https://bugzilla.suse.com/1003023"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7945"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7946"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7947"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7948"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7951"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7952"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7953"}],"related":["CVE-2016-7945","CVE-2016-7946","CVE-2016-7947","CVE-2016-7948","CVE-2016-7951","CVE-2016-7952","CVE-2016-7953"],"summary":"Security update for xorg-x11-libs","upstream":["CVE-2016-7945","CVE-2016-7946","CVE-2016-7947","CVE-2016-7948","CVE-2016-7951","CVE-2016-7952","CVE-2016-7953"]}