_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow. Upstream bug: https://bugs.freedesktop.org/show_bug.cgi?id=90857 Upstream patch: https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=897213f36baf6926daf6d192c709cf627aa5fd05
Statement: This issue affects the versions of libXcursor as shipped with Red Hat Enterprise Linux 5, 6, and 7.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:3059 https://access.redhat.com/errata/RHSA-2018:3059