Integer overflow in Oracle Solaris

CVE-2014-8094

Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly e…

Vulnerability class: Integer Overflow

EPSS: 0.010 (77.8th percentile) — read the EPSS interpretation.

Affected products

Oracle Solaris — versions 10, 11.2
X.org X_server — versions 1.7.0, 1.7.0.901, 1.7.0.902
Debian Debian_linux — versions 7.0
N/a — versions n/a

Weakness classification (CWE)

CWE-190 — Integer Overflow or Wraparound

References

DSA-3095 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
GLSA-201504-06 (vendor-advisory, x_refsource_GENTOO)
71601 (vdb-entry, x_refsource_BID)
62292 (Permissions Required, x_refsource_SECUNIA, third-party-advisory)
MDVSA-2015:119 (vendor-advisory, x_refsource_MANDRIVA, Broken Link)
secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
61947 (x_refsource_SECUNIA, third-party-advisory)