CVE-2013-1990

CVE-2013-1990 is a documented flaw in X.Org X11 libXvMC (and related X11 client libraries) involving multiple integer overflow vulnerabilities in functions XvMCListSurfaceTypes and XvMCListSubpictureTypes that can lead to heap-based buffer overflows. The attached advisories (e.g., ALAS-2014-452, ...

CVE-2013-1999

CVE-2013-1999: A buffer overflow in X.org libXvMC 1.0.7 and earlier allows an X server to crash or potentially execute arbitrary code via crafted length or index values passed to XvMCGetDRInfo. Public advisories reference the vulnerability across multiple distributions (Debian, Red Hat/CentOS, Ma...