X.Org Xorg-Server vulnerabilities

CVE-2017-12187 [CRITICAL] CVE-2017-12187: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12184 [CRITICAL] CVE-2017-12184: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12179 [CRITICAL] CVE-2017-12179: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12185 [CRITICAL] CVE-2017-12185: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12186 [CRITICAL] CVE-2017-12186: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12183 [CRITICAL] CVE-2017-12183: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12180 [CRITICAL] CVE-2017-12180: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12178 [CRITICAL] CVE-2017-12178: xorg-x11-server before 1 xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12181 [CRITICAL] CVE-2017-12181: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12177 [CRITICAL] CVE-2017-12177: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12176 [CRITICAL] CVE-2017-12176: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing extra length validation in ProcEstablishConnection function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12182 [CRITICAL] CVE-2017-12182: xorg-x11-server before 1 xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-13723 [HIGH] CVE-2017-13723: In X In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.

CVE-2017-13721 [MEDIUM] CVE-2017-13721: In X In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.

CVE-2017-10971 [HIGH] xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial vulnerabilities xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial vulnerabilities It was discovered that the X.Org X server incorrectly handled endianness conversion of certain X events. An attacker able to connect to an X server, either locally or remotely, could use this issue to crash the server, or possibly execute arbitrary code as an administrator. (CVE-2017-10971) It was discovered that the X.Org X

CVE-2017-10972 [MEDIUM] CVE-2017-10972: Uninitialized data in endianness conversion in the XEvent handling of the X Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X server.

CVE-2015-3418 [HIGH] CVE-2015-3418: The ProcPutImage function in dix/dispatch The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.

CVE-2015-3164 [LOW] CWE-264 CVE-2015-3164: The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authen The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.

CVE-2015-0255 [MEDIUM] CVE-2015-0255: X X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.

CVE-2014-8092 [MEDIUM] CVE-2014-8092: Multiple integer overflows in X Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.