[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Multiple integer overflow vulnerability in libXext due to protocol handling issues

ID: oval:org.secpod.oval:def:20968Date: (C)2014-09-02   (M)2023-07-28
Class: VULNERABILITYFamily: unix




The host is installed with libXext before 1.3.2 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to handle vectors related to the (1) XcupGetReservedColormapEntries, (2) XcupStoreColors, (3) XdbeGetVisualInfo, (4) XeviGetVisualInfo, (5) XShapeGetRectangles, and (6) XSyncListSystemCounters functions. Successful exploitation could allow attackers to trigger allocation of insufficient memory and a buffer overflow.

Platform:
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product:
libXext
Reference:
CVE-2013-1982
CVE    1
CVE-2013-1982
CPE    12
cpe:/o:redhat:enterprise_linux:5
cpe:/o:redhat:enterprise_linux:6
cpe:/a:x:libxext
cpe:/a:x:libxext:1.1
...

© SecPod Technologies