Multiple integer overflows in X.org libXxf86dga 1.1.3 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XDGAQueryModes and (2) XDGASetMode functions.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libxxf86dga | X | * | 1.1.3 (including) |
| Libxxf86dga | X | 1.0.1 (including) | 1.0.1 (including) |
| Libxxf86dga | X | 1.0.2 (including) | 1.0.2 (including) |
| Libxxf86dga | X | 1.0.99.1 (including) | 1.0.99.1 (including) |
| Libxxf86dga | X | 1.0.99.2 (including) | 1.0.99.2 (including) |
| Libxxf86dga | X | 1.1 (including) | 1.1 (including) |
| Libxxf86dga | X | 1.1.1 (including) | 1.1.1 (including) |
| Libxxf86dga | X | 1.1.2 (including) | 1.1.2 (including) |
| Red Hat Enterprise Linux 6 | RedHat | libdmx-0:1.1.3-3.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libX11-0:1.6.0-2.2.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libxcb-0:1.9.1-2.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXcursor-0:1.1.14-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXext-0:1.3.2-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXfixes-0:5.0.1-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXi-0:1.7.2-2.2.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXinerama-0:1.1.3-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXp-0:1.0.2-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXrandr-0:1.4.1-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXrender-0:0.9.8-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXres-0:1.0.7-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXt-0:1.1.4-6.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXtst-0:1.2.2-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXv-0:1.0.9-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXvMC-0:1.0.8-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXxf86dga-0:1.1.4-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | libXxf86vm-0:1.1.3-2.1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | xcb-proto-0:1.8-3.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | xkeyboard-config-0:2.11-1.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | xorg-x11-proto-devel-0:7.7-9.el6 | * |
| Red Hat Enterprise Linux 6 | RedHat | xorg-x11-xtrans-devel-0:1.3.4-1.el6 | * |
| Libxxf86dga | Ubuntu | lucid | * |
| Libxxf86dga | Ubuntu | precise | * |
| Libxxf86dga | Ubuntu | quantal | * |
| Libxxf86dga | Ubuntu | raring | * |
| Libxxf86dga | Ubuntu | upstream | * |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106870.html
- http://www.debian.org/security/2013/dsa-2690
- http://www.openwall.com/lists/oss-security/2013/05/23/3
- http://www.ubuntu.com/usn/USN-1869-1
- http://www.x.org/wiki/Development/Security/Advisory-2013-05-23
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106870.html
- http://www.debian.org/security/2013/dsa-2690
- http://www.openwall.com/lists/oss-security/2013/05/23/3
- http://www.ubuntu.com/usn/USN-1869-1
- http://www.x.org/wiki/Development/Security/Advisory-2013-05-23