CVE-2015-9262

Sažetak

_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.

Reference

https://access.redhat.com/errata/RHSA-2018:3059
https://access.redhat.com/errata/RHSA-2018:3505
https://bugs.freedesktop.org/show_bug.cgi?id=90857
https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=897213f36baf6926daf6d192c709cf627aa5fd05
https://lists.debian.org/debian-lts-announce/2018/08/msg00016.html
https://usn.ubuntu.com/3729-1/

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

16-04-2019 - 19:08

Objavljeno

01-08-2018 - 23:29