Description
libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.
References (12)
Core 12
Core References
Vendor Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/3622-1/
Exploit, Patch, Third Party Advisory x_refsource_confirm
https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=4794b5dd34688158fb51a2943032569d3780c4b8
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2017/11/28/6
Issue Tracking, Tool Signature, VDB Entry x_refsource_confirm
https://bugzilla.suse.com/show_bug.cgi?id=1065386
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201801-04
Various Sources x_refsource_misc
https://lists.freedesktop.org/archives/wayland-devel/2017-November/035979.html
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-3501-1
Mailing List mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2017/12/msg00002.html
Third Party Advisory mailing-list
x_refsource_mlist
https://marc.info/?l=freedesktop-xorg-announce&m=151188036018262&w=2
Patch, Third Party Advisory x_refsource_confirm
http://security.cucumberlinux.com/security/details.php?id=156
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2017/dsa-4059
Scores
CVSS v3
7.5
EPSS
0.0517
EPSS Percentile
91.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-190
Status
published
Products (7)
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
16.04
canonical/ubuntu_linux
17.04
canonical/ubuntu_linux
17.10
debian/debian_linux
8.0
debian/debian_linux
9.0
x/libxcursor
< 1.1.14
Published
Dec 01, 2017
Tracked Since
Feb 18, 2026