CVE-2017-16612 — HIGH (7.5)

Q: How severe is CVE-2017-16612?

CVE-2017-16612 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2017-16612?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Canonical Ubuntu Linux, X Libxcursor.

Vulnerability Description

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Debian	Debian Linux	8.0
Canonical	Ubuntu Linux	14.04
X	Libxcursor	<= 1.1.14

Related Weaknesses (CWE)

CWE-190

References

http://security.cucumberlinux.com/security/details.php?id=156PatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2017/11/28/6Mailing ListThird Party Advisory
http://www.ubuntu.com/usn/USN-3501-1Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1065386Issue TrackingTool SignatureVDB Entry
https://cgit.freedesktop.org/wayland/wayland/commit/?id=5d201df72f3d4f4cb8b8f75f
https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=4794b5dd34688158fb51ExploitPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2017/12/msg00002.html
https://lists.freedesktop.org/archives/wayland-devel/2017-November/035979.html
https://marc.info/?l=freedesktop-xorg-announce&m=151188036018262&w=2Third Party Advisory
https://security.gentoo.org/glsa/201801-04
https://usn.ubuntu.com/3622-1/
https://www.debian.org/security/2017/dsa-4059Third Party Advisory
http://security.cucumberlinux.com/security/details.php?id=156PatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2017/11/28/6Mailing ListThird Party Advisory
http://www.ubuntu.com/usn/USN-3501-1Third Party Advisory

FAQ

What is CVE-2017-16612?

CVE-2017-16612 is a vulnerability with a CVSS score of 7.5 (HIGH). libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vec...

How severe is CVE-2017-16612?

CVE-2017-16612 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-16612?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Canonical Ubuntu Linux, X Libxcursor.