Уязвимость CVE-2013-2064: Информация

Описание

Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.

Важность: MEDIUM (6,8)

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

      ---

      Конфигурация 2

      cpe:2.3:a:oracle:secure_global_desktop:5.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:oracle:secure_global_desktop:4.71:*:*:*:*:*:*:*

      ---

      Конфигурация 3

      cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

      ---

      cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*

      ---

      Конфигурация 4

      cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*

      ---

      Конфигурация 5

      cpe:2.3:o:fedoraproject:fedora:19:*:*:*:*:*:*:*

      ---

      Конфигурация 6

      cpe:2.3:a:x:libxcb:*:*:*:*:*:*:*:*

      End including

      1.9

      ---

      cpe:2.3:a:x:libxcb:1.1.90.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.1.91:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.1.92:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.4:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.1.93:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.7:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.8.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.8:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:x:libxcb:1.6:*:*:*:*:*:*:*

      ---