Out-Of-Bounds Write

2018-08-2303:42:19

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.011 Low

EPSS

Percentile

84.1%

JSON

libX11.so is vulnerable to an out-of-bounds write. The server response consisting of a length byte followed by the actual string is not NULL-terminated, which could lead to an off-by-one override in the functions XGetFontPath, XListExtensions and XListFonts, and result in an out-of-bounds write.

CPENameOperatorVersion
libx11.soeq6.3.0
gdmeq3.26.2.1__5.el7
gdmeq3.28.2__9.el7
gdmeq3.28.2__11.el7
gdmeq3.28.2__12.el7_6.1
gdmeq3.28.2__12.el7_6.2
gdmeq3.28.2__12.el7_6
gdmeq3.28.2__10.el7
xorg-x11-servereq1.19.5__5.1.el7_5
xorg-x11-drv-atieq18.0.1__1.el7

Name	Operator	Version
libx11.so	eq	6.3.0
gdm	eq	3.26.2.1__5.el7
gdm	eq	3.28.2__9.el7
gdm	eq	3.28.2__11.el7
gdm	eq	3.28.2__12.el7_6.1
gdm	eq	3.28.2__12.el7_6.2
gdm	eq	3.28.2__12.el7_6
gdm	eq	3.28.2__10.el7
xorg-x11-server	eq	1.19.5__5.1.el7_5
xorg-x11-drv-ati	eq	18.0.1__1.el7