Published on 13/12/16 - Updated on 01/07/17
Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync.
CWE-190 (Integer Overflow or Wraparound)
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
|SUSE-SU-2016:2505, SUSE-SU-2016:2828, SUSE-SU-2016:3172|
No exploits available for this CVE in our database.