Integer overflow vulnerability in X.org libXfixes via vectors related to the XFixesGetCursorImage functionID: oval:org.secpod.oval:def:20966 | Date: (C)2014-09-02 (M)2023-07-28 |
Class: VULNERABILITY | Family: unix |
The host is installed with libXfixes 5.0 or earlier and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle crafted vectors related to the XFixesGetCursorImage function. Successful exploitation could allow attackers to lead to a heap-based buffer overflow.
Platform: |
Red Hat Enterprise Linux 5 |
Red Hat Enterprise Linux 6 |