CVE-2017-12185

Опубликовано: 10 окт. 2017

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	xorg-x11-server	Will not fix
Red Hat Enterprise Linux 6	xorg-x11-server	Will not fix
Red Hat Enterprise Linux 7	xorg-x11-server	Will not fix
Red Hat Enterprise Linux 9	xorg-x11-server	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-391

https://bugzilla.redhat.com/show_bug.cgi?id=1509215xorg-x11-server: unvalidated lengths in MIT-SCREEN-SAVER extension

EPSS

Процентиль: 74%

0.00843

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-12185

CVSS3: 9.8

ubuntu

около 8 лет назад

xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12185

CVSS3: 9.8

nvd

около 8 лет назад

xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

CVE-2017-12185

CVSS3: 9.8

debian

около 8 лет назад

xorg-x11-server before 1.19.5 was missing length validation in MIT-SCR ...

GHSA-9xvh-p9jr-vrcq

CVSS3: 9.8

github

больше 3 лет назад

xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

openSUSE-SU-2017:2823-1

suse-cvrf

больше 8 лет назад

Security update for xorg-x11-server

EPSS

Процентиль: 74%

0.00843

Низкий

7.5 High

CVSS3