Integer overflow vulnerability in libXcursor via vectors related to the _XcursorFileHeaderCreate function
|ID: oval:org.secpod.oval:def:20978||Date: (C)2014-09-02 (M)2017-04-25|
|Class: VULNERABILITY||Family: unix|
The host is installed with libXcursor 1.1.13 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle crafted vectors related to the _XcursorFileHeaderCreate function. Successful exploitation could allow attackers to trigger allocation of insufficient memory and a buffer overflow.
|Red Hat Enterprise Linux 5|
|Red Hat Enterprise Linux 6|