CVE-2013-1987
Published: 23 May 2013
Multiple integer overflows in X.org libXrender 0.9.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRenderQueryFilters, (2) XRenderQueryFormats, and (3) XRenderQueryPictIndexValues functions.
Priority
Status
Package | Release | Status |
---|---|---|
libxrender Launchpad, Ubuntu, Debian |
upstream |
Pending
(0.9.8)
|
lucid |
Released
(1:0.9.5-1ubuntu0.1)
|
|
precise |
Released
(1:0.9.6-2ubuntu0.1)
|
|
quantal |
Released
(1:0.9.7-1ubuntu0.12.10.1)
|
|
raring |
Released
(1:0.9.7-1ubuntu0.13.04.1)
|
|
Patches: upstream: http://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=73e77eb21d649edc1ce1746739f9358e337b2935 upstream: http://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=e52853974664289fe42a92909667ed77cfa1cec5 (1/3) upstream: http://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=9e577d40322b9e3d8bdefec0eefa44d8ead451a4 (2/3) upstream: http://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=786f78fd8df6d165ccbc81f306fd9f22b5c1551c (3/3) |