Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2016-7944

Published: December 13, 2016Last modified: November 9, 2023

Description

Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync.

Severity score breakdown

ParameterValue
Base score9.8
Attack VectorNETWORK
Attack complexityLOW
Privileges requiredNONE
User interactionNONE
ScopeUNCHANGED
ConfidentialityHIGH
Integrity impactHIGH
Availability impactHIGH
VectorCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSlibxfixesNot affected (6.0.0-r0)
StreamlibxfixesNot affected (6.0.0-r0)

References

ON THIS PAGE