CVE-2013-6424

Public on 2014-01-14
Modified on 2014-09-16
Description
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.
Severity
Important severity
Important
CVSS v3 Base Score
7.4
See breakdown

Affected Packages

Platform Package Release Date Advisory Status
Amazon Linux 1 xorg-x11-server 2014-01-14 ALAS-2014-277 Fixed

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv2 7.4 AV:A/AC:M/Au:S/C:C/I:C/A:C
NVD CVSSv2 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P