CVE-2023-43787

Summary

A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user to trigger an integer overflow and execute arbitrary code with elevated privileges.

Affected Software

VendorProductVersion RangeStatus
0 < 1.8.7affected
Red HatRed Hat Enterprise Linux 80:1.6.8-8.el8 < *unaffected
Red HatRed Hat Enterprise Linux 90:1.7.0-9.el9 < *unaffected

Weaknesses

  • CWE-122: Heap-based Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References