CVE-2013-1981

Publication date 23 May 2013

Last updated 24 July 2024

Ubuntu priority

Description

Multiple integer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XQueryFont, (2) _XF86BigfontQueryFont, (3) XListFontsWithInfo, (4) XGetMotionEvents, (5) XListHosts, (6) XGetModifierMapping, (7) XGetPointerMapping, (8) XGetKeyboardMapping, (9) XGetWindowProperty, (10) XGetImage, (11) LoadColornameDB, (12) XrmGetFileDatabase, (13) _XimParseStringFile, or (14) TransFileName functions.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
libx11	13.04 raring	Fixed 2:1.5.0-1ubuntu1.1
	12.10 quantal	Fixed 2:1.5.0-1ubuntu0.1
	12.04 LTS precise	Fixed 2:1.4.99.1-0ubuntu2.1
	10.04 LTS lucid	Fixed 2:1.3.2-1ubuntu3.1

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
libx11	Upstream: ?id=d7f Upstream: ?id=9f5 Upstream: ?id=6df Upstream: ?id=566 Upstream: ?id=395 Upstream: ?id=1f6 Upstream: ?id=2cd Upstream: ?id=90f Upstream: ?id=076 Upstream: ?id=460 Upstream: ?id=164 Upstream: ?id=79d Upstream: ?id=833 Upstream: ?id=a35 Upstream: ?id=0b0 Upstream: ?id=192 Upstream: ?id=b2c Upstream: ?id=d38 Upstream: ?id=12a Upstream: ?id=3fe Upstream: ?id=313 Upstream: ?id=282

Package

Patch details

libx11

Upstream: ?id=d7f
Upstream: ?id=9f5
Upstream: ?id=6df
Upstream: ?id=566
Upstream: ?id=395
Upstream: ?id=1f6
Upstream: ?id=2cd
Upstream: ?id=90f
Upstream: ?id=076
Upstream: ?id=460
Upstream: ?id=164
Upstream: ?id=79d
Upstream: ?id=833
Upstream: ?id=a35
Upstream: ?id=0b0
Upstream: ?id=192
Upstream: ?id=b2c
Upstream: ?id=d38
Upstream: ?id=12a
Upstream: ?id=3fe
Upstream: ?id=313
Upstream: ?id=282

References

Related Ubuntu Security Notices (USN)

USN-1854-1
libx11 vulnerabilities
5 June 2013

CVE-2013-1981

Description

Status

Patch details

References

Related Ubuntu Security Notices (USN)

Other references