Showing 1 - 4 of 4

CVE-2017-16612

Status Candidate

Overview

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

Related Files

Ubuntu Security Notice USN-3622-1: Posted Apr 10, 2018; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3622-1 - It was discovered that the Wayland Xcursor support incorrectly handled certain files. An attacker could use these issues to cause Wayland to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2017-16612; SHA-256 | 704f973b015acf2993ea6a3936ef0327b2d900b1629af216a5a954248d89b18b; Download | Favorite | View

Gentoo Linux Security Advisory 201801-04: Posted Jan 8, 2018; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201801-4 - A vulnerability in LibXcursor might allow remote attackers to execute arbitrary code. Versions less than 1.1.15 are affected.; tags | advisory, remote, arbitrary; systems | linux, gentoo; advisories | CVE-2017-16612; SHA-256 | efff3a503e29a07ef271d0b795a159954b5741ee7aa2b7b0a5ab60ef2fde0038; Download | Favorite | View

Debian Security Advisory 4059-1: Posted Dec 12, 2017; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4059-1 - It was discovered that libXcursor, a X cursor management library, is prone to several heap overflows when parsing malicious files. An attacker can take advantage of these flaws for arbitrary code execution, if a user is tricked into processing a specially crafted cursor file.; tags | advisory, overflow, arbitrary, code execution; systems | linux, debian; advisories | CVE-2017-16612; SHA-256 | d7f9c24a8f07ce16763dcc954b7a6eb8900a35b776185c65a1fe94d1cc86b6b8; Download | Favorite | View

Ubuntu Security Notice USN-3501-1: Posted Nov 29, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3501-1 - It was discovered that libxcursor incorrectly handled certain files. An attacker could use these issues to cause libxcursor to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2017-16612; SHA-256 | 8533f39168f2a2d6205e712f40adfbaf90b4d8e07d352222a21441228524870d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

CVE-2017-16612

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems