6.8 Medium
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.029 Low
EPSS
Percentile
90.7%
Pedro Ribeiro discovered that the X.Org X server incorrectly handled
memory operations when handling ImageText requests. An attacker could use
this issue to cause X.Org to crash, or to possibly execute arbitrary code.
(CVE-2013-4396)
It was discovered that non-root X.Org X servers such as Xephyr incorrectly
used cached xkb files. A local attacker could use this flaw to cause a xkb
cache file to be loaded by another user, resulting in a denial of service.
(CVE-2013-1056)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 13.04 | noarch | xserver-xorg-core | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xdmx | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xdmx-tools | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xnest | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xserver-xephyr | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xserver-xfbdev | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xserver-xorg-core-dbg | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xserver-xorg-core-udeb | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xserver-xorg-dev | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |
Ubuntu | 13.04 | noarch | xvfb | < 2:1.13.3-0ubuntu6.2 | UNKNOWN |