X.Org libXi 'XListInputDevices()' Memory Corruption Vulnerability

The 'libXi' library is prone to a memory-corruption vulnerability because it fails to adequately bounds-check user-supplied data.

Attackers can exploit this issue to execute arbitrary code within the context of the user running the X client. Failed exploit attempts will likely cause denial-of-service conditions.

Versions prior to libXi 1.7.2 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus