Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-13721

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In X.Org Server aka xserver and xorg-server before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts ...

4.7CVSS6.2AI score0.00357EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2017:3047-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.0437EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2017/11/27 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : xorg-x11-server (SUSE-SU-2017:3047-1)

This update for xorg-x11-server fixes several issues. These security issues were fixed : - CVE-2017-13721: Missing validation of shmseg resource id in Xext/XShm could lead to shared memory segments of other users beeing freed bnc1052984 - CVE-2017-13723: A local denial of service via unusual...

9.8CVSS6.9AI score0.0437EPSS
Exploits1References40
Tenable Nessus
Tenable Nessus
added 2017/10/30 12:0 a.m.32 views

GLSA-201710-30 : X.Org Server: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201710-30 X.Org Server: Multiple vulnerabilities Multiple vulnerabilities have been discovered in X.Org Server. Please review the referenced CVE identifiers for details. Impact : A local attacker could cause a global buffer overfl...

7.8CVSS6.7AI score0.02879EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2017/10/18 12:0 a.m.57 views

Debian DSA-4000-1 : xorg-server - security update

Several vulnerabilities have been discovered in the X.Org X server. An attacker who's able to connect to an X server could cause a denial of service or potentially the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

9.8CVSS7.3AI score0.0437EPSS
Exploits1References17
Debian
Debian
added 2017/10/17 9:17 p.m.34 views

[SECURITY] [DSA 4000-1] xorg-server security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4000-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 17, 2017 https://www.debian.org/security/faq -...

9.8CVSS9.1AI score0.0437EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/10/13 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-3453-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.2AI score0.00443EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2017/10/12 2:32 p.m.56 views

USN-3453-1: X.Org X server vulnerabilities

Michal Srb discovered that the X.Org X server incorrectly handled shared memory segments. An attacker able to connect to an X server, either locally or remotely, could use this issue to crash the server, or possibly replace shared memory segments of other X clients in the same session...

7.8CVSS6.6AI score0.00443EPSS
Exploits0
CVE
CVE
added 2017/10/09 2:0 p.m.140 views

CVE-2017-13721

CVE-2017-13721 affects X.Org Server (xserver/xorg-server) prior to 1.19.4. The issue arises in ProcShmCreateSegment: a shmseg resource id can belong to a non-existing client, causing X server aborts with FatalError or overwriting another client’s segment. This can enable a local attacker to crash...

4.7CVSS5.6AI score0.00357EPSS
Exploits0References6Affected Software1
Mageia
Mageia
added 2017/10/09 9:51 a.m.44 views

Updated x11-server packages fix security vulnerabilities

In Xext/shm, the shmseg resource id can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client CVE-2017-13721. Generating strings for XKB data used a single shared static buffer, which offered several...

7.8CVSS2AI score0.00443EPSS
Exploits0References2
Rows per page
Query Builder