CVE-2015-9262: Buffer Overflow
Published Aug 1, 2018
·Updated
XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
Affected Software
10 affected componentsFixes available
redhat/libxcursor<1.1.15
1.1.15
Debian Debian Linux=8.0
Canonical Ubuntu Linux=14.04
Canonical Ubuntu Linux=16.04
X libXcursor<1.1.15
redhat Ansible Tower=3.3
redhat Enterprise Linux Desktop=7.0
redhat Enterprise Linux Server=7.0
redhat Enterprise Linux Workstation=7.0
debian/libxcursor
1:1.2.0-21:1.2.1-11:1.2.3-1
Remediation
Patch Available
Event History
Aug 1, 2018
CVE Published
via MITRE·11:00 PM
Data Sourced
via MITRE·11:00 PM
Description
Data Sourced
via NVD·11:29 PM
RemedyDescriptionSeverityWeaknessAffected Software
Jan 11, 2024
Data Sourced
via Launchpad·10:13 PM
Description
Feb 19, 2026
Data Sourced
via Ubuntu·12:22 AM
RemedyDescriptionSeverityAffected Software
Data Sourced
via Debian·12:23 AM
DescriptionAffected Software
Frequently Asked Questions
1
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2015-9262.
2
What is the severity of CVE-2015-9262?
The severity of CVE-2015-9262 is critical (9.8).
3
What is the affected software?
The affected software includes libXcursor before version 1.1.15, Debian Debian Linux 8.0, Canonical Ubuntu Linux 14.04 and 16.04, X Libxcursor up to version 1.1.15, Redhat Ansible Tower 3.3, Redhat Enterprise Linux Desktop/Server/Workstation 7.0.
4
How does CVE-2015-9262 impact the system?
CVE-2015-9262 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
5
How can I fix CVE-2015-9262?
To fix CVE-2015-9262, update the libXcursor package to version 1.1.15 or later.