CVE-2023-43786

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libX11 (affected versions not specified)

Description The issue is related to an infinite loop within the PutSubImage() function of the libX11 library, which provides the client API for the X Window System. This flaw allows a local user to consume all available system resources, causing a denial of service condition. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Integer Overflow

Infinite Loop

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-835CWE-400

Related Identifiers

ALSA-2024:2145

ALSA-2024:2973

ALT-PU-2023-6109

ALT-PU-2023-6146

ALT-PU-2023-6468

AZL-31321

BDU:2023-06816

BDU:2023-06817

CESA-2024_2973

CVE-2023-43786

DLA-3602-1

DLA-3603-1

DSA-5517-1

INFSA-2024_2145

INFSA-2024_2973

JLSEC-2026-474

JLSEC-2026-475

MGASA-2023-0287

OESA-2023-1708

OPENSUSE-SU-2023_3963-1

OPENSUSE-SU-2024:13296-1

RHSA-2024:2145

RHSA-2024:2973

RHSA-2024_2145

RHSA-2024_2973

SUSE-SU-2023:3963-1

SUSE-SU-2023:3989-1

SUSE-SU-2024:2453-1

USN-6407-1

USN-6407-2

USN-6408-1

USN-6408-2

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Zvirt Node

Libx11

CVE-2023-43786

Weakness Enumeration

Related Identifiers

Affected Products

References · 116