FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wayland -- integer overflow

Affected packages
wayland < 1.19.0_1

Details

VuXML ID fd24a530-c202-11eb-b217-b42e99639323
Discovery 2021-05-02
Entry 2021-05-31

Tobias Stoeckmann reports:

The libXcursor fix for CVE-2013-2003 has never been imported into wayland, leaving it vulnerable to it.

References

CVE Name CVE-2013-2003
FreeBSD PR ports/256273
URL https://gitlab.freedesktop.org/wayland/wayland/-/merge_requests/133