CVE-2018-14600
See a problem?- Source
- https://nvd.nist.gov/vuln/detail/CVE-2018-14600
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-14600.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2018-14600
- Related
- Published
- 2018-08-24T19:29:01Z
- Modified
- 2024-07-30T06:03:12.930956Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution.
- References
-
- http://www.securityfocus.com/bid/105177
- http://www.securitytracker.com/id/1041543
- https://access.redhat.com/errata/RHSA-2019:2079
- https://security.gentoo.org/glsa/201811-01
- http://www.openwall.com/lists/oss-security/2018/08/21/6
- https://lists.debian.org/debian-lts-announce/2018/08/msg00030.html
- https://bugzilla.suse.com/show_bug.cgi?id=1102068
- https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=dbf72805fd9d7b1846fe9a11b46f3994bfc27fea
- https://lists.x.org/archives/xorg-announce/2018-August/002916.html
- https://usn.ubuntu.com/3758-1/
- https://usn.ubuntu.com/3758-2/
- https://security.alpinelinux.org/vuln/CVE-2018-14600
- https://security-tracker.debian.org/tracker/CVE-2018-14600
Affected packages
Alpine:v3.10 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.11 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.12 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.13 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.14 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.15 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.16 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.17 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.18 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.19 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.20 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Alpine:v3.5 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
Alpine:v3.6 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
Alpine:v3.7 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
Alpine:v3.8 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
Alpine:v3.9 / libx11
Package
- Name
- libx11
- Purl
- pkg:apk/alpine/libx11?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.6-r0
Affected versions
1.*
1.1.99.2-r0
1.1.99.2-r1
1.2-r0
1.2.1-r0
1.2.2-r0
1.3-r0
1.3.2-r0
1.3.3-r0
1.3.3-r1
1.3.4-r0
1.3.5-r0
1.3.6-r0
1.4.0-r0
1.4.1-r0
1.4.1-r1
1.4.2-r0
1.4.3-r0
1.4.3-r1
1.4.3-r2
1.4.3-r3
1.4.4-r0
1.4.99.1-r0
1.4.99.901-r0
1.5.0-r0
1.5.99.902-r0
1.6.0-r0
1.6.1-r0
1.6.2-r0
1.6.2-r1
1.6.3-r0
1.6.3-r1
1.6.3-r2
1.6.4-r0
1.6.5-r0
1.6.5-r1
1.6.5-r2
Debian:11 / libx11
Package
- Name
- libx11
- Purl
- pkg:deb/debian/libx11?arch=source
Debian:12 / libx11
Package
- Name
- libx11
- Purl
- pkg:deb/debian/libx11?arch=source
Debian:13 / libx11
Package
- Name
- libx11
- Purl
- pkg:deb/debian/libx11?arch=source
Git / gitlab.freedesktop.org/xorg/lib/libX11
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.freedesktop.org/xorg/lib/libX11
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
Other
MODULAR_COPY
XACE-SELINUX-MERGE
XORG-6_7_99_1
XORG-6_7_99_2
XORG-6_7_99_902
XORG-6_7_99_903
XORG-6_8_1
XORG-6_8_99_10
XORG-6_8_99_13
XORG-6_8_99_14
XORG-6_8_99_15
XORG-6_8_99_6
XORG-6_8_99_7
XORG-6_8_99_9
XORG-6_8_99_900
XORG-6_8_99_901
XORG-6_8_99_902
XORG-6_8_99_903
XORG-6_99_99_900
XORG-6_99_99_901
XORG-6_99_99_902
XORG-6_99_99_903
XORG-6_99_99_904
XORG-MAIN
libX11-1_0_1
libX11-1_0_2
libX11-1_0_3
libX11-1.*
libX11-1.0.99.1
libX11-1.0.99.2
libX11-1.1
libX11-1.1-RC1
libX11-1.1-RC2
libX11-1.1.1
libX11-1.1.2
libX11-1.1.3
libX11-1.1.4
libX11-1.1.99.2
libX11-1.2
libX11-1.2.1
libX11-1.2.2
libX11-1.2.99.901
libX11-1.3
libX11-1.3.1
libX11-1.3.2
libX11-1.3.3
libX11-1.3.4
libX11-1.3.99.901
libX11-1.3.99.902
libX11-1.3.99.903
libX11-1.4.0
libX11-1.4.1
libX11-1.4.2
libX11-1.4.3
libX11-1.4.4
libX11-1.4.99.1
libX11-1.4.99.901
libX11-1.4.99.902
libX11-1.5.0
libX11-1.5.99.901
libX11-1.5.99.902
libX11-1.6.0
libX11-1.6.1
libX11-1.6.2
libX11-1.6.3
libX11-1.6.4
libX11-1.6.5