CVE-2017-16612

Published: 28 November 2017

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
libxcursor
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 16.04 ESM (Xenial Xerus)
Released (1:1.1.14-1ubuntu0.16.04.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1:1.1.14-1ubuntu0.14.04.1])
Patches:
Upstream: https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=4794b5dd34688158fb51a2943032569d3780c4b8
wayland
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 16.04 ESM (Xenial Xerus)
Released (1.12.0-1~ubuntu16.04.3)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1.4.0-1ubuntu1.1])
Patches:
Upstream: https://cgit.freedesktop.org/wayland/wayland/commit/?id=5d201df72f3d4f4cb8b8f75f980169b03507da38