CVE-2013-1988
Published: 23 May 2013
Multiple integer overflows in X.org libXRes 1.0.6 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XResQueryClients and (2) XResQueryClientResources functions.
Priority
Status
Package | Release | Status |
---|---|---|
libxres Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(2:1.0.5-1ubuntu0.1)
|
|
quantal |
Released
(2:1.0.6-1ubuntu0.12.10.1)
|
|
raring |
Released
(2:1.0.6-1ubuntu0.13.04.1)
|
|
upstream |
Pending
(1.0.7)
|
|
Patches: upstream: http://cgit.freedesktop.org/xorg/lib/libXRes/commit/?id=69457711050ac3a53859ef11790a7ac815cd7d94 upstream: http://cgit.freedesktop.org/xorg/lib/libXRes/commit/?id=b053d215b80e721f9afdc5794e4f3f4f2aee0141 (1/2) upstream: http://cgit.freedesktop.org/xorg/lib/libXRes/commit/?id=f468184963e53feda848853c4aefd0197b2cc116 (2/2) |