The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | xorg-server | < 2:1.3.0.0.dfsg-4 | xorg-server_2:1.3.0.0.dfsg-4_all.deb |
Debian | 11 | all | xorg-server | < 2:1.3.0.0.dfsg-4 | xorg-server_2:1.3.0.0.dfsg-4_all.deb |
Debian | 10 | all | xorg-server | < 2:1.3.0.0.dfsg-4 | xorg-server_2:1.3.0.0.dfsg-4_all.deb |
Debian | 999 | all | xorg-server | < 2:1.3.0.0.dfsg-4 | xorg-server_2:1.3.0.0.dfsg-4_all.deb |
Debian | 13 | all | xorg-server | < 2:1.3.0.0.dfsg-4 | xorg-server_2:1.3.0.0.dfsg-4_all.deb |