Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.
Conclusion & alert: CVE-2013-4396 is rated Moderate Risk (55.6/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 1.97%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-03-09 | 1.57% | 1.97% | +0.40% |
| 2 | 2025-03-30 | 2.19% | 1.57% | -0.61% |
| 3 | 2025-03-29 | — | 2.19% | — |
Full EPSS history (7 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 6.5 | 2.0 | MEDIUM |
|
8.0 | 6.4 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
not yet assigned | CVE-2013-4396 not yet assigned priority: Debian including 1 source packages (xorg-server), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. | https://security-tracker.debian.org/tracker/CVE-2013-4396 |
gentoo
|
high | CVE-2013-4396: 1 GLSA(s) (201405-07), 1 atom(s) (x11-base/xorg-server); latest impact high. | https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2013-4396 |
redhat
|
high | — | https://access.redhat.com/security/cve/CVE-2013-4396 |
ubuntu
|
medium | CVE-2013-4396 medium priority: Ubuntu including 3 source packages (xorg-server, xorg-server-lts-quantal, xorg-server-lts-raring), 15 status rows across 5 suites (lucid, precise, quantal, raring, upstream): DNE 6, released 6, needs-triage 2, ignored 1. | https://ubuntu.com/security/CVE-2013-4396 |
: Per: https://bugzilla.redhat.com/show_bug.cgi?id=1014561 "' A malicious, authorized client could use this flaw to crash the X.Org server or, potentially, execute arbitrary code with root privileges.'
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| x | x.org_x11 | 6.0 | cpe:2.3:a:x:x.org_x11:6.0:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.1 | cpe:2.3:a:x:x.org_x11:6.1:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.3 | cpe:2.3:a:x:x.org_x11:6.3:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.4 | cpe:2.3:a:x:x.org_x11:6.4:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.5.1 | cpe:2.3:a:x:x.org_x11:6.5.1:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.6 | cpe:2.3:a:x:x.org_x11:6.6:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.7 | cpe:2.3:a:x:x.org_x11:6.7:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.8 | cpe:2.3:a:x:x.org_x11:6.8:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.8.1 | cpe:2.3:a:x:x.org_x11:6.8.1:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.8.2 | cpe:2.3:a:x:x.org_x11:6.8.2:*:*:*:*:*:*:* |
| x | x.org_x11 | 6.9.0 | cpe:2.3:a:x:x.org_x11:6.9.0:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.0 | cpe:2.3:a:x:x.org_x11:7.0:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.1 | cpe:2.3:a:x:x.org_x11:7.1:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.2 | cpe:2.3:a:x:x.org_x11:7.2:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.3 | cpe:2.3:a:x:x.org_x11:7.3:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.4 | cpe:2.3:a:x:x.org_x11:7.4:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.5 | cpe:2.3:a:x:x.org_x11:7.5:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.5 | cpe:2.3:a:x:x.org_x11:7.5:rc1:*:*:*:*:*:* |
| x | x.org_x11 | 7.6 | cpe:2.3:a:x:x.org_x11:7.6:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.6 | cpe:2.3:a:x:x.org_x11:7.6:rc1:*:*:*:*:*:* |
| x | x.org_x11 | 7.7 | cpe:2.3:a:x:x.org_x11:7.7:*:*:*:*:*:*:* |
| x | x.org_x11 | 7.7 | cpe:2.3:a:x:x.org_x11:7.7:rc1:*:*:*:*:*:* |