CVE-2012-1699

X.Org X11 and XFree86 < 3.3.2 - Denial of Service via SetEventMask Request

Title source: llm
STIX 2.1

Description

The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 before 3.3.3 calls the SendErrToClient function with a mask value instead of a pointer, which allows local users to cause a denial of service (memory corruption and crash) or obtain potentially sensitive information from memory via a SetEventMask request that triggers an invalid pointer dereference.

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19369
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=135765511704334&w=2
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=842841
Various Sources mailing-list x_refsource_mlist
http://lists.freedesktop.org/archives/xorg-announce/2012-July/002040.html

Scores

EPSS 0.0035
EPSS Percentile 27.2%

Details

CWE
CWE-119
Status published
Products (7)
x/x.org_x11 6.0
x/x.org_x11 6.1
x/x.org_x11 6.3
x/x.org_x11 6.4
x/x.org_x11 6.5.1
x/x.org_x11 6.6
xfree86/xfree86 < 3.3.2
Published Dec 21, 2012
Tracked Since Feb 18, 2026