CVE-2023-43786

Libx11: stack exhaustion from infinite recursion in putsubimage()

Published: 10/10/2023 Last updated: 11/6/2025 Reserved: 9/22/2023

A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to consume all available system resources and cause a denial of service condition.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	5.5	Medium	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Opam packages affected (2)

conf-libX11 raylib

Products affected (9)

Product	Vendor	Version
Red Hat Enterprise Linux 6	Red Hat	< 7cb9b20941e1fb20d22d0a2f460a3d4fa417274c
Red Hat Enterprise Linux 7	Red Hat	< d4a8ec5cc7ff5d442bd49a44f26d74b2021ba4c8
Red Hat Enterprise Linux 9	Red Hat	< d0212f095ab56672f6f36aabc605bda205e1e0bf
Red Hat Enterprise Linux 7	Red Hat	4.3
Red Hat Enterprise Linux 8	Red Hat	< 1a053c4d716898a53c2e31c574a70ea0c37044a3
Red Hat Enterprise Linux 8	Red Hat	<= *
Red Hat Enterprise Linux 9	Red Hat	< af12e209a9d559394d35875ba0e6c80407605888
		<= 6.5.*
		< 4c05dac488a660fe2925c047ecb119e7afaaeb1e

CVE-2023-43786

Libx11: stack exhaustion from infinite recursion in putsubimage()

Metrics

Opam packages affected (2)

Products affected (9)

References (24)