Multiple integer overflow vulnerability in X.org libX11ID: oval:org.secpod.oval:def:21004 | Date: (C)2014-09-03 (M)2023-07-28 |
Class: VULNERABILITY | Family: unix |
The host is installed with libX11 before 1.5.99.901 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to properly handle vectors related to the (1) XQueryFont, (2) _XF86BigfontQueryFont, (3) XListFontsWithInfo, (4) XGetMotionEvents, (5) XListHosts, (6) XGetModifierMapping, (7) XGetPointerMapping, (8) XGetKeyboardMapping, (9) XGetWindowProperty, (10) XGetImage, (11) LoadColornameDB, (12) XrmGetFileDatabase, (13) _XimParseStringFile, or (14) TransFileName functions. Successful exploitation could allow attackers to trigger allocation of insufficient memory and a buffer overflow.
Platform: |
Red Hat Enterprise Linux 5 |
Red Hat Enterprise Linux 6 |