CVE-2013-4396

NONE EPSS 89.5%
Published Oct 10, 201312y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 10, 2013 12y ago
Last Modified Jun 16, 2026 2w ago

Description

Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.

Threat Intelligence

EPSS Exploit Probability
89.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-399

Affected Products 22

VendorProductVersionRange
xx.org_x116.0any
xx.org_x116.1any
xx.org_x116.3any
xx.org_x116.4any
xx.org_x116.5.1any
xx.org_x116.6any
xx.org_x116.7any
xx.org_x116.8any
xx.org_x116.8.1any
xx.org_x116.8.2any
xx.org_x116.9.0any
xx.org_x117.0any
xx.org_x117.1any
xx.org_x117.2any
xx.org_x117.3any
xx.org_x117.4any
xx.org_x117.5any
xx.org_x117.5any
xx.org_x117.6any
xx.org_x117.6any
xx.org_x117.7any
xx.org_x117.7any

References 9

Remediation