CVE-2023-43786
10.10.2023, 13:15
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to consume all available system resources and cause a denial of service condition.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| x.org | libx11 | 𝑥 < 1.8.7 |
| redhat | enterprise_linux | 8.0 |
| redhat | enterprise_linux | 9.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libx11 |
| ||||||||||||||||||
| libxpm |
| ||||||||||||||||||
| motif |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libX11-6 |
| ||||||||||||||||||||||||||||||
| libX11-6-32bit |
| ||||||||||||||||||||||||||||||
| libX11-data |
| ||||||||||||||||||||||||||||||
| libX11-devel |
| ||||||||||||||||||||||||||||||
| libX11-xcb1 |
| ||||||||||||||||||||||||||||||
| libX11-xcb1-32bit |
| ||||||||||||||||||||||||||||||
| libXpm-devel |
| ||||||||||||||||||||||||||||||
| libXpm4 |
|
Red Hat Enterprise Linux Releases
Amazon Linux Releases
Amazon Package | |||||||
|---|---|---|---|---|---|---|---|
| libX11 |
| ||||||
| libX11-common |
| ||||||
| libX11-debuginfo |
| ||||||
| libX11-debugsource |
| ||||||
| libX11-devel |
| ||||||
| libX11-xcb |
| ||||||
| libX11-xcb-debuginfo |
| ||||||
| libXpm |
| ||||||
| libXpm-debuginfo |
| ||||||
| libXpm-debugsource |
| ||||||
| libXpm-devel |
| ||||||
| libXpm-devel-debuginfo |
|
Common Weakness Enumeration
- CWE-400 - Uncontrolled Resource ConsumptionThe software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
- CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')The program contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
References