Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2013-7439

Опубликовано: 16 апр. 2015
Источник: debian
EPSS Низкий

Описание

Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libx11fixed2:1.6.0-1package

Примечания

  • http://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=39547d600a13713e15429f49768e54c3173c828d

  • https://bugs.freedesktop.org/show_bug.cgi?id=56508

  • https://www.openwall.com/lists/oss-security/2015/04/08/4

  • The following packages will be recompiled after the release of

  • the DSA for wheezy and the DLA for squeeze:

  • libxrender (1:0.9.7-1+deb7u2 / 0.9.6-1+squeeze1+build1)

  • libxi (TBD / 1.3-8+build1)

  • libxfixes (TBD / 4.0.5-1+squeeze1+build1)

  • libxrandr (TBD / 1.3.0-3+squeeze1+build1)

  • libsdl1.2 (TBD / 1.2.14-6.1+build1)

  • libxv (TBD / 1.0.5-1+squeeze1+build1)

  • libxp (TBD / 1.0.0.xsf1-2+squeeze1+build1)

  • libxext (TBD / 1.1.2-1+squeeze1+build1)

  • xserver-xorg-video-vmware (TBD / 11.0.1-2+build1)

  • cairo (TBD / 1.8.10-6+build1)

  • open-vm-tools (TBD / 8.4.2-261024-1+build1)

  • wine-gecko-1.4 (wheezy)

  • list completed by analyzing http://codesearch.debian.net/results/SetReqLen and http://codesearch.debian.net/results/MakeBigReq

EPSS

Процентиль: 83%
0.01877
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2013-7439

ubuntu
почти 11 лет назад

Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.

redhat логотип

CVE-2013-7439

redhat
почти 13 лет назад

Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.

nvd логотип

CVE-2013-7439

nvd
почти 11 лет назад

Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.

suse-cvrf логотип

SUSE-SU-2015:1334-1

suse-cvrf
больше 10 лет назад

Security update for xorg-x11-libX11

github логотип

GHSA-rq5m-5v65-q84q

github
больше 3 лет назад

Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.

EPSS

Процентиль: 83%
0.01877
Низкий