CVE-2017-12186

🗓️ 24 Jan 2018 15:00:29Reported by redhatType

xorg-x11-server before 1.19.5 missing length validation in X-Resource extension

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 35
Prion	Input validation	24 Jan 201815:29	–	prion
RedhatCVE	CVE-2017-12186	3 Nov 201711:20	–	redhatcve
NVD	CVE-2017-12186	24 Jan 201815:29	–	nvd
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2017-12186	4 Mar 202500:00	–	nessus
Tenable Nessus	FreeBSD : xorg-server -- multiple vulnabilities (7274e0cc-575f-41bc-8619-14a41b3c2ad0)	16 Oct 201700:00	–	nessus
Tenable Nessus	Slackware 14.0 / 14.1 / 14.2 / current : xorg-server (SSA:2017-291-03)	19 Oct 201700:00	–	nessus
Tenable Nessus	Ubuntu 14.04 LTS / 16.04 LTS : X.Org X server vulnerabilities (USN-3456-1)	18 Oct 201700:00	–	nessus
Tenable Nessus	openSUSE Security Update : xorg-x11-server (openSUSE-2017-1177)	23 Oct 201700:00	–	nessus
Tenable Nessus	SUSE SLES11 Security Update : xorg-x11-server (SUSE-SU-2017:3025-1)	17 Nov 201700:00	–	nessus
Tenable Nessus	SUSE SLED12 / SLES12 Security Update : xorg-x11-server (SUSE-SU-2017:3047-1)	27 Nov 201700:00	–	nessus

Nvd

Vulners

Node

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

Node

x.org xorg-serverRange<1.19.5

[
  {
    "product": "xorg-x11-server",
    "vendor": "The X.Org Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "before 1.19.5"
      }
    ]
  }
]

Source	Link
debian	www.debian.org/security/2017/dsa-4000
cgit	www.cgit.freedesktop.org/xorg/xserver/commit/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jan 2018 15:29Current

9.7High risk

Vulners AI Score9.7

CVSS27.5

CVSS39.8

EPSS0.0079