CVE-2017-16612 — Integer Overflow or Wraparound in Libxcursor

CWE-190 — Integer Overflow or Wraparound CWE-122 — Heap-based Buffer Overflow10 documents8 sources

Severity

7.5HIGHNVD

EPSS

3.6%

top 12.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wayland X Libxcursor Canonical Ubuntu Linux +1 more

Timeline

PublishedDec 1

Latest updateMay 14

Description

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDx/libxcursor1.1.14

▶Debianwayland/wayland< 1.14.0-2+3

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 17.04, 17.10

Patches

Patch: security.cucumberlinux.com ↗Patch: cgit.freedesktop.org ↗Patch: security.cucumberlinux.com ↗

🔴Vulnerability Details

GHSA

GHSA-777r-cpw4-3m4v: libXcursor before 1↗2022-05-14

▶

OSV

CVE-2017-16612: libXcursor before 1↗2017-12-01

▶

CVEList

CVE-2017-16612: libXcursor before 1↗2017-12-01

▶

📋Vendor Advisories

Ubuntu

Wayland vulnerability↗2018-04-09

▶

Ubuntu

libxcursor vulnerability↗2017-11-29

▶

Red Hat

libXcursor: file.c: heap-based buffer overflow when reading/creating images↗2017-11-25

▶

Debian

CVE-2017-16612: libxcursor - libXcursor before 1.1.15 has various integer overflows that could lead to heap b...↗2017

▶

💬Community

Bugzilla

CVE-2017-16612 libXcursor: file.c: heap-based buffer overflow when reading/creating images [fedora-all]↗2017-11-29

▶

Bugzilla

CVE-2017-16612 libXcursor: file.c: heap-based buffer overflow when reading/creating images↗2017-11-29

▶