The (1) GetDatabase and (2) _XimParseStringFile functions in X.org libX11 1.5.99.901 (1.6 RC1) and earlier do not restrict the recursion depth when processing directives to include files, which allows X servers to cause a denial of service (stack consumption) via a crafted file.

prion 1

ubuntucve 1

debiancve 1

cve 1

nessus 17

openvas 14

fedora 2

ubuntu 1

debian 1

securityvulns 2

ibm 3

veracode 25