CVE-2013-6424
xorg-server - integer underflow
EPSS 6.8%
Description
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.
How to fix CVE-2013-6424
To remediate CVE-2013-6424, upgrade the affected package to a fixed version below.
- Debian/xorg-server—upgrade to 2:1.14.2.901-1 or later
- Debian/xorg-server—upgrade to 2:1.7.7-18 or later
Is CVE-2013-6424 being exploited?
Moderate — EPSS is 6.8%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 2:1.14.2.901-1
- from 0, < 2:1.7.7-18