---

CVE-2017-13723 - log back

CVE-2017-13723 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Local
Type	+ Arbitrary code execution
Description	+ A stack buffer overflow was found in xkbtext.c, which didn't handle xkb formatted string output safely due to a single shared static buffer. The fix introduces a ring of resizable buffers to avoid problems when strings end up longer than anticipated. + This vulnerability may potentially lead to privilege escalation when the xorg-server is running with root privileges.
References	+ https://cgit.freedesktop.org/xorg/xserver/commit/?id=94f11ca5cf011ef123bd222cabeaef6f424d76ac
Notes