CVE-2013-1056

Publication date 16 October 2013

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.

Read the notes from the security team

Status

Package Ubuntu Release Status
xorg-server 14.04 LTS trusty
Fixed 2:1.14.4-1ubuntu2
13.10 saucy Ignored end of life
13.04 raring
Fixed 2:1.13.3-0ubuntu6.2
12.10 quantal
Fixed 2:1.13.0-0ubuntu6.4
12.04 LTS precise
Fixed 2:1.11.4-0ubuntu10.14
10.04 LTS lucid Ignored end of life
xorg-server-lts-quantal 14.04 LTS trusty Not in release
13.10 saucy Not in release
13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise
Fixed 2:1.13.0-0ubuntu6.1~precise4
10.04 LTS lucid Not in release
xorg-server-lts-raring 14.04 LTS trusty Not in release
13.10 saucy Not in release
13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise
Fixed 2:1.13.3-0ubuntu6~precise3
10.04 LTS lucid Not in release

Notes

mdeslaur

in Ubuntu-specific patch: 190_cache-xkbcomp_output_for_fast_start_up.patch

References

Related Ubuntu Security Notices (USN)

    • USN-1990-1
    • X.Org X server vulnerabilities
    • 17 October 2013

Other references