Branch p6 update bulletin.

Package libX11 updated to version 1.4.99.1-alt0.M60P.1 for branch p6 in task 120589.

Published: 2015-04-16
Modified: 2025-04-12

CVE-2013-7439

Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.

Severity: HIGH (7.5) Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

References:

http://lists.x.org/archives/xorg-announce/2015-April/002561.html
http://seclists.org/oss-sec/2015/q2/81
http://www.debian.org/security/2015/dsa-3224
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://www.securityfocus.com/bid/73962
http://www.ubuntu.com/usn/USN-2568-1
https://bugs.freedesktop.org/show_bug.cgi?id=56508
http://lists.x.org/archives/xorg-announce/2015-April/002561.html
http://seclists.org/oss-sec/2015/q2/81
http://www.debian.org/security/2015/dsa-3224
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://www.securityfocus.com/bid/73962
http://www.ubuntu.com/usn/USN-2568-1
https://bugs.freedesktop.org/show_bug.cgi?id=56508

Version: 2.1.2

Branch p6 update on 2014-06-05

ALT-BU-2014-2805-1

ALT-PU-2014-1704-1

Closed vulnerabilities

CVE-2013-7439