CVE-2013-1982

Published Jun 15, 2013

Last updated 11 years ago

Overview

Description: Multiple integer overflows in X.org libXext 1.3.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XcupGetReservedColormapEntries, (2) XcupStoreColors, (3) XdbeGetVisualInfo, (4) XeviGetVisualInfo, (5) XShapeGetRectangles, and (6) XSyncListSystemCounters functions.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-189

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:x:libxext:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F991C3B9-1FB1-4BD8-9F51-9058F48E1901",
            "versionEndIncluding": "1.3.1"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.0.99.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B38272A1-E9BA-41E9-A140-850373C7283A"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.0.99.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C11C9159-03DB-4533-9CF0-19E4D16AE9B0"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.0.99.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "722A7FAB-A0AE-4FC4-9544-9E920C2C2FFA"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49E3D2F1-81D7-4051-BEB0-CF70384167FE"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB39008E-D945-4DBA-AAB3-BC0BF9CE994E"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD527941-CF0D-4050-A502-8C9750DEC092"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F70E195-D6B2-4171-B6AC-7FD0D72A5C09"
          },
          {
            "criteria": "cpe:2.3:a:x:libxext:1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71E4E65C-3768-44DF-AD38-2C8532925B1B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References