- Description
- X.org libFS 1.0.4 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to an unexpected sign extension in the FSOpenServer function.
- Source
- secalert@redhat.com
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
- nvd@nist.gov
- CWE-119
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:x:libfs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A9116A3-76F7-421F-AFAD-4819E9D81581",
"versionEndIncluding": "1.0.4"
},
{
"criteria": "cpe:2.3:a:x:libfs:1.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F2F3F753-0506-474C-B49B-627A82BA0090"
},
{
"criteria": "cpe:2.3:a:x:libfs:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71F1F90A-7182-40A8-B5DE-E10C55612218"
},
{
"criteria": "cpe:2.3:a:x:libfs:1.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C61A0BA1-AF88-4163-A8D9-BD54EC42E0DF"
}
],
"operator": "OR"
}
]
}
]