CVE-2013-1986

EPSS 0.90%

libxrandr - several

Published: 6/15/2013Modified: 4/28/2026

Also known as:DEBIAN-CVE-2013-1986

Description

Multiple integer overflows in X.org libXrandr 1.4.0 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRRQueryOutputProperty and (2) XRRQueryProviderProperty functions.

Affected packages (2)

Debian/libxrandrfrom 0, < 2:1.3.2-2+deb7u1
Debian/libxrandrfrom 0, < 2:1.3.0-3+squeeze1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-1986