CVE-2013-2003

NONE EPSS 79.7%
Published Jun 15, 201313y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jun 15, 2013 13y ago
Last Modified Jun 16, 2026 2w ago

Description

Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the _XcursorFileHeaderCreate function.

Threat Intelligence

EPSS Exploit Probability
79.7% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-189

Affected Products 8

VendorProductVersionRange
xlibxcursor* ≤1.1.13
xlibxcursor1.1.6any
xlibxcursor1.1.7any
xlibxcursor1.1.8any
xlibxcursor1.1.9any
xlibxcursor1.1.10any
xlibxcursor1.1.11any
xlibxcursor1.1.12any

References 6

  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106791.html
  • debian.org http://www.debian.org/security/2013/dsa-2681
  • openwall.com http://www.openwall.com/lists/oss-security/2013/05/23/3
  • securityfocus.com http://www.securityfocus.com/bid/60121
  • ubuntu.com http://www.ubuntu.com/usn/USN-1856-1
  • x.org http://www.x.org/wiki/Development/Security/Advisory-2013-05-23
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.