PublicDateAtUSN: 2013-05-23 15:00:00 UTC
Candidate: CVE-2013-2003
CRD: 2013-05-23 15:00:00 UTC
PublicDate: 2013-06-15 20:55:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2003
 http://www.x.org/wiki/Development/Security/Advisory-2013-05-23
 http://www.debian.org/security/2013/dsa-2681
 https://ubuntu.com/security/notices/USN-1856-1
Description:
 Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to
 trigger allocation of insufficient memory and a buffer overflow via vectors
 related to the _XcursorFileHeaderCreate function.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Ilja van Sprundel
Assigned-to: mdeslaur
CVSS: 

Patches_libxcursor:
 upstream: http://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=8f677eaea05290531d007d1fec2768119926088d (1/1)
upstream_libxcursor: pending (1.1.14)
lucid_libxcursor: ignored (reached end-of-life)
precise_libxcursor: released (1:1.1.12-1ubuntu0.1)
quantal_libxcursor: released (1:1.1.13-1ubuntu0.12.10.1)
raring_libxcursor: released (1:1.1.13-1ubuntu0.13.04.1)
devel_libxcursor: not-affected (1:1.1.13-1+deb7u1)