libX11: Multiple Array Index error leading to heap-based OOB write

🗓️ 13 Oct 2014 21:06:02Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 5 Views

libX11 <=1.5.99.901 permits heap out-of-bounds writes via crafted lengths or indices in sixteen functions.

Reporter	Title	Published	Views	Family All 141
IBM Security Bulletins	Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerability in X.Org libX11 (CVE-2013-1997)	31 Jan 201902:25	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in xorg-x11-libX11 affects IBM Flex System Chassis Management Module (CMM)	31 Jan 201902:25	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in libX11 affect IBM BladeCenter Advanced Management Module (AMM)	14 Apr 202314:32	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in X.Org libX11.	31 Jan 201902:25	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in xorg-x11-libX11 affect IBM Flex System Chassis Management Module (CMM)	31 Jan 201902:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by vulnerability in X.Org libX11 (CVE-2013-1997)	14 Apr 202314:32	–	ibm
FreeBSD	xorg -- protocol handling issues in X Window System client libraries	23 May 201300:00	–	freebsd
Amazon	Medium: libX11, libXcursor, libXfixes, libXi, libXrandr, libXrender, libXres, libXt, libXv, libXvMC, libXxf86dga, libXxf86vm, libdmx, xorg-x11-proto-devel	22 Nov 201400:00	–	amazon
Tenable Nessus	Amazon Linux AMI : libX11 / libXcursor,libXfixes,libXi,libXrandr,libXrender,libXres,libXt,libXv,libXvMC,libXxf86dga,libXxf86vm,libdmx,xorg-x11-proto-devel (ALAS-2014-452)	26 Nov 201400:00	–	nessus
Tenable Nessus	CentOS 6 : libX11 / libXcursor / libXext / libXfixes / libXi / libXinerama / libXp / libXrandr / etc (CESA-2014:1436)	12 Nov 201400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	6	ppc	libx11	0:1.6.0-2.2.el6	libX11-0:1.6.0-2.2.el6.ppc.rpm
Red Hat Enterprise Linux	6	ppc64	libx11	0:1.6.0-2.2.el6	libX11-0:1.6.0-2.2.el6.ppc64.rpm
Red Hat Enterprise Linux	6	s390	libx11	0:1.6.0-2.2.el6	libX11-0:1.6.0-2.2.el6.s390.rpm
Red Hat Enterprise Linux	6	s390x	libx11	0:1.6.0-2.2.el6	libX11-0:1.6.0-2.2.el6.s390x.rpm
Red Hat Enterprise Linux	6	x86_64	libx11	0:1.6.0-2.2.el6	libX11-0:1.6.0-2.2.el6.x86_64.rpm
Red Hat Enterprise Linux	6	any	libx11	0:1.6.0-2.2.el6.i686	libX11-0:1.6.0-2.2.el6.i686.noarch.rpm
Red Hat Enterprise Linux	6	any	libx11-common	0:1.6.0-2.2.el6.noarch	libX11-common-0:1.6.0-2.2.el6.noarch.noarch.rpm
Red Hat Enterprise Linux	6	ppc	libx11-debuginfo	0:1.6.0-2.2.el6	libX11-debuginfo-0:1.6.0-2.2.el6.ppc.rpm
Red Hat Enterprise Linux	6	ppc64	libx11-debuginfo	0:1.6.0-2.2.el6	libX11-debuginfo-0:1.6.0-2.2.el6.ppc64.rpm
Red Hat Enterprise Linux	6	s390	libx11-debuginfo	0:1.6.0-2.2.el6	libX11-debuginfo-0:1.6.0-2.2.el6.s390.rpm

Source	Link
x	www.x.org/wiki/Development/Security/Advisory-2013-05-23
access	www.access.redhat.com/security/cve/CVE-2013-1997
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2013-1997
cve	www.cve.org/CVERecord

27 Jun 2026 12:29Current

7.8High risk

Vulners AI Score7.8

CVSS 26.8

EPSS0.02109

libX11 heap out of bounds crafted lengths crafted indices XAllocColorCells XListFonts