Lucene search
PRIOn knowledge basePRION:CVE-2014-8094HistoryDec 10, 2014 - 3:59 p.m.
Integer overflow
2014-12-1015:59:00
PRIOn knowledge base
www.prio-n.com
6
Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 7.0 | |
| solaris | eq | 11.2 | |
| solaris | eq | 10 | |
| xorg-server | eq | 1.14.2 | |
| xorg-server | eq | 1.10.1 | |
| xorg-server | eq | 1.8.99.905 | |
| xorg-server | eq | 1.13.1.901 | |
| xorg-server | eq | 1.7.5.902 | |
| xorg-server | eq | 1.7.4.901 | |
| xorg-server | eq | 1.11.0 |
References
advisories.mageia.org/MGASA-2014-0532.html
secunia.com/advisories/61947
secunia.com/advisories/62292
www.debian.org/security/2014/dsa-3095
www.mandriva.com/security/advisories?name=MDVSA-2015:119
www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html
www.securityfocus.com/bid/71601
www.x.org/wiki/Development/Security/Advisory-2014-12-09/
security.gentoo.org/glsa/201504-06
Related
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:05:57
nvd
nvd
CVE-2014-8094
2014-12-10 15:59:06
cvelist
cvelist
CVE-2014-8094
2014-12-10 15:00:00
debiancve
debiancve
CVE-2014-8094
2014-12-10 15:59:06
cve
cve
CVE-2014-8094
2014-12-10 15:59:06
ubuntucve
ubuntucve
CVE-2014-8094
2014-12-09 00:00:00
freebsd
freebsd
xserver -- multiple issue with X client request handling
2014-12-09 00:00:00
osv
osv
xorg-server - security update
2014-12-10 00:00:00
openvas
openvas
Debian Security Advisory DSA 3095-1 (xorg-server - security update)
2014-12-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0045-1)
2021-06-09 00:00:00
SUSE: Security Advisory for xorg-x11-server (SUSE-SU-2015:0045-1)
2015-10-13 00:00:00
nessus
nessus
SuSE 11.3 Security Update : xorg-x11-server (SAT Patch Number 10108)
2015-01-15 00:00:00
Debian DSA-3095-1 : xorg-server - security update
2014-12-15 00:00:00
Slackware 14.1 / current : xorg-server (SSA:2014-356-03)
2014-12-23 00:00:00
suse
suse
Security update for xorg-x11-server (important)
2015-01-14 23:04:43
ibm
ibm
debian
debian
[SECURITY] [DSA 3095-1] xorg-server security update
2014-12-10 18:32:55
[SECURITY] [DLA 120-1] xorg-server security update
2014-12-22 10:23:16
mageia
mageia
Updated x11-server packages fix security vulnerabilities
2014-12-19 18:06:35
centos
centos
xorg security update
2014-12-11 19:58:14
slackware
slackware
[slackware-security] xorg-server
2014-12-23 05:39:09
ubuntu
ubuntu
X.Org X server vulnerabilities
2014-12-09 00:00:00
securityvulns
securityvulns
[USN-2436-1] X.Org X server vulnerabilities
2014-12-11 00:00:00
X.Org X server and video drivers multiple security vulnerabilities
2014-12-11 00:00:00
amazon
amazon
Important: xorg-x11-server
2015-01-15 14:49:00
redhat
redhat
(RHSA-2014:1983) Important: xorg-x11-server security update
2014-12-11 00:00:00
oraclelinux
oraclelinux
xorg-x11-server security update
2014-12-11 00:00:00
archlinux
archlinux
xorg-server: multiple issues
2014-12-12 00:00:00
gentoo
gentoo
X.Org X Server: Multiple vulnerabilities
2015-04-17 00:00:00