CVE-2013-1989
EPSS 0.90%libxv - several
Published: 6/15/2013Modified: 4/28/2026
Also known as:DEBIAN-CVE-2013-1989
Description
Multiple integer overflows in X.org libXv 1.0.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XvQueryPortAttributes, (2) XvListImageFormats, and (3) XvCreateImage function.
Affected packages (2)
- Debian/libxvfrom 0, < 2:1.0.7-1+deb7u1
- Debian/libxvfrom 0, < 2:1.0.5-1+squeeze1