CVE-2013-1056

EUVD-2013-1096
X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
canonicalubuntu_linux
12.04
canonicalubuntu_linux
12.10
canonicalubuntu_linux
13.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xorg-server
bookworm
2:21.1.7-3+deb12u7
fixed
bookworm (security)
2:21.1.7-3+deb12u8
fixed
bullseye
2:1.20.11-1+deb11u13
fixed
bullseye (security)
2:1.20.11-1+deb11u14
fixed
sid
2:21.1.14-1
fixed
trixie
2:21.1.14-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xorg-server
lucid
ignored
precise
Fixed 2:1.11.4-0ubuntu10.14
released
quantal
Fixed 2:1.13.0-0ubuntu6.4
released
raring
Fixed 2:1.13.3-0ubuntu6.2
released
saucy
ignored
trusty
Fixed 2:1.14.4-1ubuntu2
released
xorg-server-lts-quantal
lucid
dne
precise
Fixed 2:1.13.0-0ubuntu6.1~precise4
released
quantal
dne
raring
dne
saucy
dne
trusty
dne
xorg-server-lts-raring
lucid
dne
precise
Fixed 2:1.13.3-0ubuntu6~precise3
released
quantal
dne
raring
dne
saucy
dne
trusty
dne
References
http://www.ubuntu.com/usn/USN-1990-1
http://www.ubuntu.com/usn/USN-1990-1