Multiple integer overflows in X.org libXext 1.3.1 and previous versions allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XcupGetReservedColormapEntries, (2) XcupStoreColors, (3) XdbeGetVisualInfo, (4) XeviGetVisualInfo, (5) XShapeGetRectangles, and (6) XSyncListSystemCounters functions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x libxext 1.1.1 |
||
x libxext 1.1 |
||
x libxext |
||
x libxext 1.3.0 |
||
x libxext 1.0.99.2 |
||
x libxext 1.2.0 |
||
x libxext 1.1.2 |
||
x libxext 1.0.99.4 |
||
x libxext 1.0.99.3 |