X.Org Server (aka xserver and xorg-server) prior to 1.16.3 and 1.17.x prior to 1.17.1 allows remote malicious users to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x.org xorg-server 1.17.0 |
||
x.org xorg-server |
||
opensuse opensuse 13.2 |
||
opensuse opensuse 13.1 |