What is the severity of CVE-2013-4396?

CVE-2013-4396 has a severity rating that allows remote authenticated users to potentially cause a denial of service or execute arbitrary code.

How do I fix CVE-2013-4396?

To fix CVE-2013-4396, upgrade to xorg-x11-server version 1.14.4 or newer.

What software is affected by CVE-2013-4396?

CVE-2013-4396 affects various versions of the xorg-x11-server module prior to 1.14.4.

Can CVE-2013-4396 be exploited remotely?

Yes, CVE-2013-4396 can be exploited by remote authenticated users.

What impact does CVE-2013-4396 have on servers?

CVE-2013-4396 can lead to a denial of service, causing the daemon to crash.

Vulnerability/
CVE-2013-4396

medium

6.5

CWE

416 399

2/10/2013

10/10/2013

6/8/2024

CVE-2013-4396: Use After Free

First published: Wed Oct 02 2013(Updated: )

Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/xorg-x11-server	<1.15.0	1.15.0
redhat/xorg-x11-server	<1.14.4	1.14.4
X11 Fonts Utilities	=6.0
X11 Fonts Utilities	=6.1
X11 Fonts Utilities	=6.3
X11 Fonts Utilities	=6.4
X11 Fonts Utilities	=6.5.1
X11 Fonts Utilities	=6.6
X11 Fonts Utilities	=6.7
X11 Fonts Utilities	=6.8
X11 Fonts Utilities	=6.8.1
X11 Fonts Utilities	=6.8.2
X11 Fonts Utilities	=6.9.0
X11 Fonts Utilities	=7.0
X11 Fonts Utilities	=7.1
X11 Fonts Utilities	=7.2
X11 Fonts Utilities	=7.3
X11 Fonts Utilities	=7.4
X11 Fonts Utilities	=7.5
X11 Fonts Utilities	=7.5-rc1
X11 Fonts Utilities	=7.6
X11 Fonts Utilities	=7.6-rc1
X11 Fonts Utilities	=7.7
X11 Fonts Utilities	=7.7-rc1

Remedy

https://bugzilla.redhat.com/show_bug.cgi?id=1014561

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-4396?
CVE-2013-4396 has a severity rating that allows remote authenticated users to potentially cause a denial of service or execute arbitrary code.
How do I fix CVE-2013-4396?
To fix CVE-2013-4396, upgrade to xorg-x11-server version 1.14.4 or newer.
What software is affected by CVE-2013-4396?
CVE-2013-4396 affects various versions of the xorg-x11-server module prior to 1.14.4.
Can CVE-2013-4396 be exploited remotely?
Yes, CVE-2013-4396 can be exploited by remote authenticated users.
What impact does CVE-2013-4396 have on servers?
CVE-2013-4396 can lead to a denial of service, causing the daemon to crash.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/references
agent/weakness
agent/author
agent/remedy
agent/last-modified-date
agent/severity
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2013-4396
agent/software-canonical-lookup
agent/trending
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
package-manager/redhat
vendor/x
canonical/x11 fonts utilities
version/x11 fonts utilities/6.0
version/x11 fonts utilities/6.1
version/x11 fonts utilities/6.3
version/x11 fonts utilities/6.4
version/x11 fonts utilities/6.5.1
version/x11 fonts utilities/6.6
version/x11 fonts utilities/6.7
version/x11 fonts utilities/6.8
version/x11 fonts utilities/6.8.1
version/x11 fonts utilities/6.8.2
version/x11 fonts utilities/6.9.0
version/x11 fonts utilities/7.0
version/x11 fonts utilities/7.1
version/x11 fonts utilities/7.2
version/x11 fonts utilities/7.3
version/x11 fonts utilities/7.4
version/x11 fonts utilities/7.5
version/x11 fonts utilities/7.5-rc1
version/x11 fonts utilities/7.6
version/x11 fonts utilities/7.6-rc1
version/x11 fonts utilities/7.7
version/x11 fonts utilities/7.7-rc1