6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:N/I:N/A:C
0.003 Low
EPSS
Percentile
71.5%
Integer overflow in the ProcRenderCreateCursor function in the Render
extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent
attackers to cause a denial of service (daemon crash) via unspecified
request fields that are used to calculate a glyph buffer size, which
triggers a dereference of unmapped memory.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | xorg-server | < 1:1.0.2-0ubuntu10.13 | UNKNOWN |
ubuntu | 7.04 | noarch | xorg-server | < 2:1.2.0-3ubuntu8.4 | UNKNOWN |
ubuntu | 7.10 | noarch | xorg-server | < 2:1.3.0.0.dfsg-12ubuntu8.4 | UNKNOWN |
ubuntu | 8.04 | noarch | xorg-server | < 2:1.4.1~git20080131-1ubuntu9.2 | UNKNOWN |