FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libX11 -- Doublefree in locale handlng code

Affected packages
libX11 < 1.6.12

Details

VuXML ID 8da79498-e6f6-11ea-8cbf-54e1ad3d6335
Discovery 2020-08-25
Entry 2020-08-25

The X.org project reports:

There is an integer overflow and a double free vulnerability in the way LibX11 handles locales. The integer overflow is a necessary precursor to the double free.

References

CVE Name CVE-2020-14363
URL https://lists.x.org/archives/xorg-announce/2020-August/003056.html