Multiple integer overflow vulnerabilities in X.org libXrandrID: oval:org.secpod.oval:def:20988 | Date: (C)2014-09-02 (M)2023-07-28 |
Class: VULNERABILITY | Family: unix |
The host is installed with libXrandr before 1.4.1 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to properly handle vectors related to the (1) XRRQueryOutputProperty and (2) XRRQueryProviderProperty functions. Successful exploitation could allow attackers to trigger allocation of insufficient memory and a buffer overflow.
Platform: |
Red Hat Enterprise Linux 5 |
Red Hat Enterprise Linux 6 |