Vulnerability in X.org X11
CVE-2014-8091
X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote a…
EPSS: 0.048 (89.7th percentile) — read the EPSS interpretation.
Affected products
- X.org X11 — versions 5.0
- X.org X_server
- N/a — versions n/a
References
- DSA-3095 (vendor-advisory, x_refsource_DEBIAN)
- secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
- secalert@redhat.com (x_refsource_CONFIRM)
- GLSA-201504-06 (vendor-advisory, x_refsource_GENTOO)
- 62292 (x_refsource_SECUNIA, third-party-advisory)
- MDVSA-2015:119 (vendor-advisory, x_refsource_MANDRIVA)
- secalert@redhat.com (x_refsource_CONFIRM)
- 71597 (vdb-entry, x_refsource_BID)
- 61947 (x_refsource_SECUNIA, third-party-advisory)