Wind River Support Network

HomeDefectsLIN5-9523
Fixed

LIN5-9523 : Security Advisory - libxt - CVE-2013-2005

Created: Jun 30, 2013    Updated: Dec 19, 2017
Resolved Date: Jul 4, 2014
Previous ID: LIN4-15278
Found In Version: 5.0
Fix Version: 5.0.1.17
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the (1) ReqCleanup, (2) HandleSelectionEvents, (3) ReqTimedOut, (4) HandleNormal, and (5) HandleSelectionReplies functions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2005

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online