Информационная безопасность
[RU] switch to English


Уязвимости безопасности в X-серверах и библиотеках
дополнено с 27 мая 2013 г.
Опубликовано:17 июня 2013 г.
Источник:
SecurityVulns ID:13089
Тип:библиотека
Уровень опасности:
7/10
Описание:Многочисленные целочисленные переполнения, переполнения буфера, повреждения памяти и т.п.
Затронутые продукты:LIBDMX : libdmx 1.1
 LIBXV : libxv 1.0
 LIBXVMC : libxvmc 1.0
 XORG : libxfixes 5.0
 XORG : libxrender 0.9
 XORG : mesa 8.0
 XORG : xserver-xorg-video-openchrome 0.2
 XORG : libxt 1.1
 XORG : libxcursor 1.1
 XORG : libxext 1.3
 XORG : libxi 1.6
 XORG : libxrandr 1.3
 XORG : libxp 1.0
 XORG : libxcb 1.8
 XORG : libfs 1.0
 XORG : libxres 1.0
 XORG : libxtst 1.2
 XORG : libxxf86dga 1.1
 XORG : libxinerama 1.1
 XORG : libxxf86vm 1.1
 LIBX11 : libx11 1.5
CVE:CVE-2013-2066 (Buffer overflow in X.org libXv 1.0.7 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XvQueryPortAttributes function.)
 CVE-2013-2064 (Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.)
 CVE-2013-2063 (Integer overflow in X.org libXtst 1.2.1 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the XRecordGetContext function.)
 CVE-2013-2062 (Multiple integer overflows in X.org libXp 1.0.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XpGetAttributes, (2) XpGetOneAttribute, (3) XpGetPrinterList, and (4) XpQueryScreens functions.)
 CVE-2013-2005 (X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the (1) ReqCleanup, (2) HandleSelectionEvents, (3) ReqTimedOut, (4) HandleNormal, and (5) HandleSelectionReplies functions.)
 CVE-2013-2004 (The (1) GetDatabase and (2) _XimParseStringFile functions in X.org libX11 1.5.99.901 (1.6 RC1) and earlier do not restrict the recursion depth when processing directives to include files, which allows X servers to cause a denial of service (stack consumption) via a crafted file.)
 CVE-2013-2003 (Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the _XcursorFileHeaderCreate function.)
 CVE-2013-2002 (Buffer overflow in X.org libXt 1.1.3 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the _XtResourceConfigurationEH function.)
 CVE-2013-2001 (Buffer overflow in X.org libXxf86vm 1.1.2 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XF86VidModeGetGammaRamp function.)
 CVE-2013-2000 (Multiple buffer overflows in X.org libXxf86dga 1.1.3 and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XDGAQueryModes and (2) XDGASetMode functions.)
 CVE-2013-1999 (Buffer overflow in X.org libXvMC 1.0.7 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XvMCGetDRInfo function.)
 CVE-2013-1998 (Multiple buffer overflows in X.org libXi 1.7.1 and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XGetDeviceButtonMapping, (2) XIPassiveGrabDevice, and (3) XQueryDeviceState functions.)
 CVE-2013-1997 (Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions.)
 CVE-2013-1996 (X.org libFS 1.0.4 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to an unexpected sign extension in the FSOpenServer function.)
 CVE-2013-1995 (X.org libXi 1.7.1 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to an unexpected sign extension in the XListInputDevices function.)
 CVE-2013-1994 (Multiple integer overflows in X.org libchromeXvMC and libchromeXvMCPro in openChrome 0.3.2 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) uniDRIOpenConnection and (2) uniDRIGetClientDriverName functions.)
 CVE-2013-1993 (Multiple integer overflows in X.org libGLX in Mesa 9.1.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XF86DRIOpenConnection and (2) XF86DRIGetClientDriverName functions.)
 CVE-2013-1992 (Multiple integer overflows in X.org libdmx 1.1.2 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) DMXGetScreenAttributes, (2) DMXGetWindowAttributes, and (3) DMXGetInputAttributes functions.)
 CVE-2013-1991 (Multiple integer overflows in X.org libXxf86dga 1.1.3 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XDGAQueryModes and (2) XDGASetMode functions.)
 CVE-2013-1990 (Multiple integer overflows in X.org libXvMC 1.0.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XvMCListSurfaceTypes and (2) XvMCListSubpictureTypes functions.)
 CVE-2013-1989 (Multiple integer overflows in X.org libXv 1.0.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XvQueryPortAttributes, (2) XvListImageFormats, and (3) XvCreateImage function.)
 CVE-2013-1988 (Multiple integer overflows in X.org libXRes 1.0.6 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XResQueryClients and (2) XResQueryClientResources functions.)
 CVE-2013-1987 (Multiple integer overflows in X.org libXrender 0.9.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRenderQueryFilters, (2) XRenderQueryFormats, and (3) XRenderQueryPictIndexValues functions.)
 CVE-2013-1986 (Multiple integer overflows in X.org libXrandr 1.4.0 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRRQueryOutputProperty and (2) XRRQueryProviderProperty functions.)
 CVE-2013-1985 (Integer overflow in X.org libXinerama 1.1.2 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the XineramaQueryScreens function.)
 CVE-2013-1984 (Multiple integer overflows in X.org libXi 1.7.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XGetDeviceControl, (2) XGetFeedbackControl, (3) XGetDeviceDontPropagateList, (4) XGetDeviceMotionEvents, (5) XIGetProperty, (6) XIGetSelectedEvents, (7) XGetDeviceProperties, and (8) XListInputDevices functions.)
 CVE-2013-1983 (Integer overflow in X.org libXfixes 5.0 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the XFixesGetCursorImage function.)
 CVE-2013-1982 (Multiple integer overflows in X.org libXext 1.3.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XcupGetReservedColormapEntries, (2) XcupStoreColors, (3) XdbeGetVisualInfo, (4) XeviGetVisualInfo, (5) XShapeGetRectangles, and (6) XSyncListSystemCounters functions.)
 CVE-2013-1981 (Multiple integer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XQueryFont, (2) _XF86BigfontQueryFont, (3) XListFontsWithInfo, (4) XGetMotionEvents, (5) XListHosts, (6) XGetModifierMapping, (7) XGetPointerMapping, (8) XGetKeyboardMapping, (9) XGetWindowProperty, (10) XGetImage, (11) LoadColornameDB, (12) XrmGetFileDatabase, (13) _XimParseStringFile, or (14) TransFileName functions.)
 CVE-2013-1872 (The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 2704-1] mesa security update (17.06.2013)
 documentDEBIAN, [SECURITY] [DSA 2693-1] libx11 security update (03.06.2013)
 documentDEBIAN, [SECURITY] [DSA 2675-2] libxvmc regression update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2692-1] libxxf86vm security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2691-1] libxinerama security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2690-1] libxxf86dga security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2689-1] libxtst security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2688-1] libxres security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2687-1] libfs security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2686-1] libxcb security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2685-1] libxp security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2684-1] libxrandr security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2683-1] libxi security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2682-1] libxext security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2681-1] libxcursor security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2680-1] libxt security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2678-1] mesa security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2677-1] libxrender security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2676-1] libxfixes security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2675-1] libxvmc security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2674-1] libxv security update (27.05.2013)
 documentDEBIAN, [SECURITY] [DSA 2673-1] libdmx security update (27.05.2013)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород