_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
This issue affects the versions of libXcursor as shipped with Red Hat Enterprise Linux 5, 6, and 7.
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3059 https://access.redhat.com/errata/RHSA-2018:3059