CVE-2013-1995
Published: 23 May 2013
X.org libXi 1.7.1 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to an unexpected sign extension in the XListInputDevices function.
Priority
Status
Package | Release | Status |
---|---|---|
libxi Launchpad, Ubuntu, Debian |
lucid |
Released
(2:1.3-3ubuntu0.2)
|
precise |
Released
(2:1.6.0-0ubuntu2.1)
|
|
quantal |
Released
(2:1.6.1-1ubuntu0.1)
|
|
raring |
Released
(2:1.6.99.1-0ubuntu3.1)
|
|
upstream |
Pending
(1.7.2)
|
|
Patches: upstream: http://cgit.freedesktop.org/xorg/lib/libXi/commit/?id=81b4df8ac6aa1520c41c3526961014a6f115cc46 |