CVE-2012-2118
published 2012-05-18CVE-2012-2118: Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute…
critical10CVSS 3.1
AVNACLAuNCCICAC
Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | xorg-server | < xorg-server 2:1.12.1.902-1 (bookworm) | xorg-server 2:1.12.1.902-1 (bookworm) |
| x.org | x11 | — | — |
| x.org | xorg-server | >= 0 < 2:1.12.1.902-1 | 2:1.12.1.902-1 |
| x.org | xorg-server | >= 0 < 2:1.12.1.902-1 | 2:1.12.1.902-1 |
| x.org | xorg-server | >= 0 < 2:1.12.1.902-1 | 2:1.12.1.902-1 |
| x.org | xorg-server | >= 0 < 2:1.12.1.902-1 | 2:1.12.1.902-1 |
CVSS provenance
nvd10.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL