CVE-2013-2005
EPSS 0.68%Published: 6/15/2013Modified: 4/28/2026
Also known as:DEBIAN-CVE-2013-2005
Description
X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the (1) ReqCleanup, (2) HandleSelectionEvents, (3) ReqTimedOut, (4) HandleNormal, and (5) HandleSelectionReplies functions.
Affected packages (1)
- Debian/libxtfrom 0, < 1:1.1.3-1+deb7u1