Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-1997

Опубликовано: 23 мая 2013
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions.

Отчет

This issue affects the libX11 package in Red Hat Enterprise Linux 5. Red Hat Product Security has rated this issue as having Moderate security impact. This issue is not planned to be fixed in Red Hat Enterprise Linux 5 as it is now in Production 3 Phase of the support and maintenance life cycle: https://access.redhat.com/support/policy/updates/errata/

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5libX11Will not fix
Red Hat Enterprise Linux 6libdmxFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libX11FixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libxcbFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libXcursorFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libXextFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libXfixesFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libXiFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libXineramaFixedRHSA-2014:143613.10.2014
Red Hat Enterprise Linux 6libXpFixedRHSA-2014:143613.10.2014

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-129->CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=960345libX11: Multiple Array Index error leading to heap-based OOB write

EPSS

Процентиль: 72%
0.00727
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-1997

ubuntu
больше 12 лет назад

Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions.

nvd логотип

CVE-2013-1997

nvd
больше 12 лет назад

Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions.

debian логотип

CVE-2013-1997

debian
больше 12 лет назад

Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and ear ...

suse-cvrf логотип

SUSE-SU-2017:0644-1

suse-cvrf
почти 9 лет назад

Security update for xorg-x11-libX11

github логотип

GHSA-x42r-v45p-29g6

github
больше 3 лет назад

Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions.

EPSS

Процентиль: 72%
0.00727
Низкий

4.3 Medium

CVSS2