CVE-2012-1699
X.Org X11 and XFree86 < 3.3.2 - Denial of Service via SetEventMask Request
Title source: llmDescription
The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 before 3.3.3 calls the SendErrToClient function with a mask value instead of a pointer, which allows local users to cause a denial of service (memory corruption and crash) or obtain potentially sensitive information from memory via a SetEventMask request that triggers an invalid pointer dereference.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19369
Various Sources x_refsource_misc
http://twitter.com/bsdaemon/status/228958599790071809
Various Sources x_refsource_confirm
https://blogs.oracle.com/sunsecurity/entry/cve_2012_1699_denial_of
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=135765511704334&w=2
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=842841
Various Sources mailing-list
x_refsource_mlist
http://lists.freedesktop.org/archives/xorg-announce/2012-July/002040.html
Various Sources x_refsource_misc
http://invisible-island.net/ansification/ansify-xfs-cve.html
Scores
EPSS
0.0035
EPSS Percentile
27.2%
Details
CWE
CWE-119
Status
published
Products (7)
x/x.org_x11
6.0
x/x.org_x11
6.1
x/x.org_x11
6.3
x/x.org_x11
6.4
x/x.org_x11
6.5.1
x/x.org_x11
6.6
xfree86/xfree86
< 3.3.2
Published
Dec 21, 2012
Tracked Since
Feb 18, 2026