_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
References
Link | Resource |
---|---|
https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=897213f36baf6926daf6d192c709cf627aa5fd05 | Patch Third Party Advisory |
https://bugs.freedesktop.org/show_bug.cgi?id=90857 | Patch Third Party Advisory |
https://usn.ubuntu.com/3729-1/ | Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2018/08/msg00016.html | Mailing List Third Party Advisory |
https://access.redhat.com/errata/RHSA-2018:3059 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2018:3505 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Information
Published : 2018-08-01 16:29
Updated : 2019-04-16 12:08
NVD link : CVE-2015-9262
Mitre link : CVE-2015-9262
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_workstation
- ansible_tower
- enterprise_linux_server
x
- libxcursor
canonical
- ubuntu_linux
debian
- debian_linux