CVE-2013-1056

X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:N/I:N/A:P
canonicalCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
VendorProductVersion
canonicalubuntu_linux
12.04
canonicalubuntu_linux
12.10
canonicalubuntu_linux
13.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xorg-server
bullseye
2:1.20.11-1+deb11u13
fixed
bullseye (security)
2:1.20.11-1+deb11u14
fixed
bookworm
2:21.1.7-3+deb12u7
fixed
bookworm (security)
2:21.1.7-3+deb12u8
fixed
sid
2:21.1.14-1
fixed
trixie
2:21.1.14-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xorg-server
trusty
Fixed 2:1.14.4-1ubuntu2
released
saucy
ignored
raring
Fixed 2:1.13.3-0ubuntu6.2
released
quantal
Fixed 2:1.13.0-0ubuntu6.4
released
precise
Fixed 2:1.11.4-0ubuntu10.14
released
lucid
ignored
xorg-server-lts-quantal
trusty
dne
saucy
dne
raring
dne
quantal
dne
precise
Fixed 2:1.13.0-0ubuntu6.1~precise4
released
lucid
dne
xorg-server-lts-raring
trusty
dne
saucy
dne
raring
dne
quantal
dne
precise
Fixed 2:1.13.3-0ubuntu6~precise3
released
lucid
dne
References
http://www.ubuntu.com/usn/USN-1990-1
http://www.ubuntu.com/usn/USN-1990-1