VDB
DEBIAN-CVE-2013-1998
DEBIAN-CVE-2013-1998
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Multiple buffer overflows in X.org libXi 1.7.1 and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XGetDeviceButtonMapping, (2) XIPassiveGrabDevice, and (3) XQueryDeviceState functions.
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | libxi | 0, 0, 0 |
| Debian:13 | libxi | 0, 0, 0 |
| Debian:12 | libxi | 0, 0, 0 |
| Debian:14 | libxi | 0, 0, 0 |
Timeline
- Jun 15, 2013 CVE Published
- Apr 28, 2026 CVE Updated