2014-06-05
ALT-BU-2014-2805-1
Branch p6 update bulletin.
Closed vulnerabilities
Published: 2015-04-16
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-7439
Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.
Severity: HIGH (7.5)
References:
- [xorg-announce] 20150414 [ANNOUNCE] X.Org Security Advisory: Buffer overflow in MakeBigReq macro
- [xorg-announce] 20150414 [ANNOUNCE] X.Org Security Advisory: Buffer overflow in MakeBigReq macro
- [oss-security] 20150409 Re: CVE Request: libX11: buffer overflow in MakeBigReq macro
- [oss-security] 20150409 Re: CVE Request: libX11: buffer overflow in MakeBigReq macro
- DSA-3224
- DSA-3224
- http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
- http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
- 73962
- 73962
- USN-2568-1
- USN-2568-1
- https://bugs.freedesktop.org/show_bug.cgi?id=56508
- https://bugs.freedesktop.org/show_bug.cgi?id=56508