Your submission was sent successfully! Close

CVE-2013-1990

Published: 23 May 2013

Multiple integer overflows in X.org libXvMC 1.0.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XvMCListSurfaceTypes and (2) XvMCListSubpictureTypes functions.

Priority

Medium

Status

Package Release Status
libxvmc
Launchpad, Ubuntu, Debian 		lucid Ignored
(reached end-of-life)
precise
Released (2:1.0.6-1ubuntu2.1)
quantal
Released (2:1.0.7-1ubuntu1.12.10.1)
raring
Released (2:1.0.7-1ubuntu1.13.04.1)
upstream Pending
(1.0.8)

Notes

AuthorNote
mdeslaur 
watch for regression fixed in dsa-2675-2

References

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading