X.org libXt 1.1.3 and previous versions does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the (1) ReqCleanup, (2) HandleSelectionEvents, (3) ReqTimedOut, (4) HandleNormal, and (5) HandleSelectionReplies functions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x libxt 1.0.7 |
||
x libxt 1.1.1 |
||
x libxt 1.0.9 |
||
x libxt 1.0.4 |
||
x libxt 1.0.3 |
||
x libxt 1.0.6 |
||
x libxt |
||
x libxt 1.0.8 |
||
x libxt 1.0.5 |
||
x libxt 1.1.2 |