xorg-server is vulnerable to denial of service. The vulnerability exists as the handler for the XkbSetNames
request does not validate the request length before accessing its contents, causing an integer underflow in the handler for the XIChangeHierarchy
request through XkbSelectEvents
.