1.4.13

DATE	CVE	VULNERABILITY TITLE	RISK
2014-06-11	CVE-2014-2977	Numeric Errors vulnerability in multiple products Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow. network low complexity opensuse suse directfb CWE-189 critical	10.0