CVE-2010-4818
published 2012-09-05CVE-2010-4818: The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via…
high8.5CVSS 3.1
AVNACMAuSCCICAC
The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | xorg-server | < xorg-server 2:1.9.99.902-1 (bookworm) | xorg-server 2:1.9.99.902-1 (bookworm) |
| x.org | x.org | — | — |
| x.org | xorg-server | >= 0 < 2:1.9.99.902-1 | 2:1.9.99.902-1 |
| x.org | xorg-server | >= 0 < 2:1.9.99.902-1 | 2:1.9.99.902-1 |
| x.org | xorg-server | >= 0 < 2:1.9.99.902-1 | 2:1.9.99.902-1 |
| x.org | xorg-server | >= 0 < 2:1.9.99.902-1 | 2:1.9.99.902-1 |
CVSS provenance
nvd8.5HIGHAV:N/AC:M/Au:S/C:C/I:C/A:C
osv8.5HIGH