Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 7.0 | |
solaris | eq | 11.2 | |
solaris | eq | 10 | |
xorg-server | eq | 1.14.2 | |
xorg-server | eq | 1.10.1 | |
xorg-server | eq | 1.8.99.905 | |
xorg-server | eq | 1.13.1.901 | |
xorg-server | eq | 1.7.5.902 | |
xorg-server | eq | 1.7.4.901 | |
xorg-server | eq | 1.11.0 |
advisories.mageia.org/MGASA-2014-0532.html
secunia.com/advisories/61947
secunia.com/advisories/62292
www.debian.org/security/2014/dsa-3095
www.mandriva.com/security/advisories?name=MDVSA-2015:119
www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html
www.securityfocus.com/bid/71601
www.x.org/wiki/Development/Security/Advisory-2014-12-09/
security.gentoo.org/glsa/201504-06