| Max CVSS | 7.5 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-2624 | 1.9 |
It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations ret
|
09-10-2019 - 23:26 | 27-07-2018 - 18:29 | |
| CVE-2017-12187 | 7.5 |
xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12182 | 7.5 |
xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12176 | 7.5 |
xorg-x11-server before 1.19.5 was missing extra length validation in ProcEstablishConnection function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12178 | 7.5 |
xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12177 | 7.5 |
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12185 | 7.5 |
xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12184 | 7.5 |
xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12183 | 7.5 |
xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-12180 | 7.5 |
xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
|
09-10-2019 - 23:22 | 24-01-2018 - 15:29 | |
| CVE-2017-13723 | 4.6 |
In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atom
|
04-02-2018 - 02:29 | 10-10-2017 - 01:30 |