FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libX11 -- Doublefree in locale handlng code

Affected packages
libX11 < 1.6.12,1

Details

VuXML ID 8da79498-e6f6-11ea-8cbf-54e1ad3d6335
Discovery 2020-08-25
Entry 2020-08-25
Modified 2020-11-15

The X.org project reports:

There is an integer overflow and a double free vulnerability in the way LibX11 handles locales. The integer overflow is a necessary precursor to the double free.

[source]

References

CVE Name CVE-2020-14363
URL https://lists.x.org/archives/xorg-announce/2020-August/003056.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.