1.9
CVSSv2

CVE-2017-13721

Published: 10/10/2017 Updated: 03/10/2019
CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4
CVSS v3 Base Score: 4.7 | Impact Score: 3.6 | Exploitability Score: 1
VMScore: 169
Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Summary

In X.Org Server (aka xserver and xorg-server) prior to 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.

Vendor Advisories

In XOrg Server (aka xserver and xorg-server) before 1194, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session ...
Arch Linux Security Advisory ASA-201710-10 ========================================== Severity: Medium Date : 2017-10-08 CVE-ID : CVE-2017-13721 CVE-2017-13723 Package : xorg-server Type : multiple issues Remote : No Link : securityarchlinuxorg/AVG-432 Summary ======= The package xorg-server before version 1194-1 is vulner ...
A denial of service vulnerability was found in xorg-server in the ProcShmCreateSegment function due to a missing shmseg resource ids validation A passed shmseg resource id may belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client ...
Several vulnerabilities have been discovered in the XOrg X server An attacker who's able to connect to an X server could cause a denial of service or potentially the execution of arbitrary code For the oldstable distribution (jessie), these problems have been fixed in version 2:1164-1+deb8u2 For the stable distribution (stretch), these proble ...
Oracle Solaris Third Party Bulletin - January 2018 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critica ...

Github Repositories

Our xorg-kit :)

xorg-kit 119-prime branch Xorg-kit is an overlay containing all core ebuilds related to xorg for Funtoo Linux It is designed to exist on users systems as an overlay, providing the ability for users to control what branch of xorg-kit they are using It is designed to be a part of the Funtoo Linux kits system The 119-prime branch of xorg-kit is the current, stable curated bra