CVE-2013-1992
Published: 23 May 2013
Multiple integer overflows in X.org libdmx 1.1.2 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) DMXGetScreenAttributes, (2) DMXGetWindowAttributes, and (3) DMXGetInputAttributes functions.
Priority
Status
Package | Release | Status |
---|---|---|
libdmx Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(1:1.1.1-1ubuntu0.1)
|
|
quantal |
Released
(1:1.1.2-1ubuntu0.12.10.1)
|
|
raring |
Released
(1:1.1.2-1ubuntu0.13.04.1)
|
|
upstream |
Pending
(1.1.3)
|
|
Patches: upstream: http://cgit.freedesktop.org/xorg/lib/libdmx/commit/?id=f34f6f64698c3b957aadba7315bb13726e3d79b0 upstream: http://cgit.freedesktop.org/xorg/lib/libdmx/commit/?id=78e11efe70d00063c830475eaaaa42f19380755d (1/3) upstream: http://cgit.freedesktop.org/xorg/lib/libdmx/commit/?id=b6fe1a7af34ea620e002fc453f9c5eacf7db3969 (2/3) upstream: http://cgit.freedesktop.org/xorg/lib/libdmx/commit/?id=5074d9d64192bd04519a438062b7d5bf216d06ee (3/3) |