Описание
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2:1.6.4-3ubuntu0.1 |
| devel | released | 2:1.6.6-1 |
| esm-infra-legacy/trusty | released | 2:1.6.2-1ubuntu2.1 |
| esm-infra/bionic | released | 2:1.6.4-3ubuntu0.1 |
| esm-infra/xenial | released | 2:1.6.3-1ubuntu2.1 |
| precise/esm | not-affected | 2:1.4.99.1-0ubuntu2.4 |
| trusty | released | 2:1.6.2-1ubuntu2.1 |
| trusty/esm | released | 2:1.6.2-1ubuntu2.1 |
| upstream | released | 1.6.6 |
| xenial | released | 2:1.6.3-1ubuntu2.1 |
Показывать по
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution.
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution.
An issue was discovered in libX11 through 1.6.5. The function XListExt ...
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution.
Уязвимость функциях XListExtensions библиотеки предоставления клиентского API для X Window System libX11, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
7.5 High
CVSS2
9.8 Critical
CVSS3