CVE-2018-14598

An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL that will be freed later on, leading to DoS (segmentation fault).

References

Affected packages

Git / gitlab.freedesktop.org/xorg/lib/libX11

Affected ranges

Type: GIT
Repo: https://gitlab.freedesktop.org/xorg/lib/libX11
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

42f4d7af9cf6d1dbfa575552e057328b054a20c9

Affected versions

Other

MODULAR_COPY

XACE-SELINUX-MERGE

XORG-6_7_99_1

XORG-6_7_99_2

XORG-6_7_99_902

XORG-6_7_99_903

XORG-6_8_1

XORG-6_8_99_10

XORG-6_8_99_13

XORG-6_8_99_14

XORG-6_8_99_15

XORG-6_8_99_6

XORG-6_8_99_7

XORG-6_8_99_9

XORG-6_8_99_900

XORG-6_8_99_901

XORG-6_8_99_902

XORG-6_8_99_903

XORG-6_99_99_900

XORG-6_99_99_901

XORG-6_99_99_902

XORG-6_99_99_903

XORG-6_99_99_904

XORG-MAIN

libX11-1_0_1

libX11-1_0_2

libX11-1_0_3

libX11-1.*

libX11-1.0.99.1

libX11-1.0.99.2

libX11-1.1

libX11-1.1-RC1

libX11-1.1-RC2

libX11-1.1.1

libX11-1.1.2

libX11-1.1.3

libX11-1.1.4

libX11-1.1.99.2

libX11-1.2

libX11-1.2.1

libX11-1.2.2

libX11-1.2.99.901

libX11-1.3

libX11-1.3.1

libX11-1.3.2

libX11-1.3.3

libX11-1.3.4

libX11-1.3.99.901

libX11-1.3.99.902

libX11-1.3.99.903

libX11-1.4.0

libX11-1.4.1

libX11-1.4.2

libX11-1.4.3

libX11-1.4.4

libX11-1.4.99.1

libX11-1.4.99.901

libX11-1.4.99.902

libX11-1.5.0

libX11-1.5.99.901

libX11-1.5.99.902

libX11-1.6.0

libX11-1.6.1

libX11-1.6.2

libX11-1.6.3

libX11-1.6.4

libX11-1.6.5