Known Vulnerabilities for Xorg-server by X.org
Listed below are 10 of the newest known vulnerabilities associated with "Xorg-server" by "X.org".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-14362 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead... | 7.8 - HIGH | 2020-09-15 | 2022-11-03 |
| CVE-2020-14361 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead... | 7.8 - HIGH | 2020-09-15 | 2022-11-03 |
| CVE-2020-14347 | A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X clie... | 5.5 - MEDIUM | 2020-08-05 | 2023-11-07 |
| CVE-2020-14346 | A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X s... | 7.8 - HIGH | 2020-09-15 | 2022-11-08 |
| CVE-2018-14665 | A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when st... | 6.6 - MEDIUM | 2018-10-25 | 2019-10-22 |
| CVE-2017-12177 | xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client... | 9.8 - CRITICAL | 2018-01-24 | 2019-10-09 |
| CVE-2017-12176 | xorg-x11-server before 1.19.5 was missing extra length validation in ProcEstablishConnection function allowing malicious X cl... | 9.8 - CRITICAL | 2018-01-24 | 2019-10-09 |
| CVE-2017-10972 | Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authentica... | 6.5 - MEDIUM | 2017-07-06 | 2019-10-03 |
| CVE-2017-10971 | In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of t... | 8.8 - HIGH | 2017-07-06 | 2017-11-04 |
| CVE-2017-2624 | It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of ... | 7 - HIGH | 2018-07-27 | 2019-10-09 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | X.org | Xorg-server | 1.9.99.903 | All | All | All |
| Application | X.org | Xorg-server | 1.9.99.902 | All | All | All |
| Application | X.org | Xorg-server | 1.9.99.901 | All | All | All |
| Application | X.org | Xorg-server | 1.9.5 | All | All | All |
| Application | X.org | Xorg-server | 1.9.4.901 | All | All | All |
| Application | X.org | Xorg-server | 1.9.4 | All | All | All |
| Application | X.org | Xorg-server | 1.9.3.902 | All | All | All |
| Application | X.org | Xorg-server | 1.9.3.901 | All | All | All |
| Application | X.org | Xorg-server | 1.9.3 | All | All | All |
| Application | X.org | Xorg-server | 1.9.2.902 | All | All | All |
| Application | X.org | Xorg-server | 1.9.2.901 | All | All | All |
| Application | X.org | Xorg-server | 1.9.2 | All | All | All |
| Application | X.org | Xorg-server | 1.9.1 | All | All | All |
| Application | X.org | Xorg-server | 1.9.0.902 | All | All | All |
| Application | X.org | Xorg-server | 1.9.0.901 | All | All | All |
| Application | X.org | Xorg-server | 1.9.0 | All | All | All |
| Application | X.org | Xorg-server | 1.8.99.905 | All | All | All |
| Application | X.org | Xorg-server | 1.8.99.904 | All | All | All |
| Application | X.org | Xorg-server | 1.8.99.903 | All | All | All |
| Application | X.org | Xorg-server | 1.8.99.902 | All | All | All |