Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2010-4818

Опубликовано: 05 сент. 2012
Источник: debian
EPSS Низкий

Описание

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xorg-serverfixed2:1.9.99.902-1package
xorg-serverfixed2:1.7.7-4squeezepackage
xorg-serverno-dsalennypackage

Примечания

  • As per https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4818 three commits with theoretical sec impact:

  • http://cgit.freedesktop.org/xorg/xserver/commit/?id=6c69235a9dfc52e4b4e47630ff4bab1a820eb543

  • http://cgit.freedesktop.org/xorg/xserver/commit/?id=ec9c97c6bf70b523bc500bd3adf62176f1bb33a4

  • http://cgit.freedesktop.org/xorg/xserver/commit/?id=3f0d3f4d97bce75c1828635c322b6560a45a037f

EPSS

Процентиль: 86%
0.02846
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2010-4818

ubuntu
почти 13 лет назад

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.

redhat логотип

CVE-2010-4818

redhat
почти 14 лет назад

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.

nvd логотип

CVE-2010-4818

nvd
почти 13 лет назад

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.

github логотип

GHSA-c8m7-2vm3-5fjq

github
около 3 лет назад

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.

oracle-oval логотип

ELSA-2011-1359

oracle-oval
больше 13 лет назад

ELSA-2011-1359: xorg-x11-server security update (MODERATE)

EPSS

Процентиль: 86%
0.02846
Низкий