Vulnerability in X Libxcursor

CVE-2013-2003

Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the _XcursorFileHeaderCreate function.

EPSS: 0.021 (79.5th percentile) — read the EPSS interpretation.

Affected products

X Libxcursor — versions 1.1.6, 1.1.7, 1.1.8
N/a — versions n/a

Weakness classification (CWE)

CWE-189

References

secalert@redhat.com (vdb-entry, x_refsource_BID)
secalert@redhat.com (vendor-advisory, x_refsource_FEDORA)
secalert@redhat.com (vendor-advisory, x_refsource_DEBIAN)
secalert@redhat.com (x_refsource_UBUNTU, vendor-advisory)
secalert@redhat.com (mailing-list, x_refsource_MLIST)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)