vulnerability

SUSE: CVE-2017-13723: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	Oct 9, 2017	Nov 16, 2017	Aug 10, 2021

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

Oct 9, 2017

Added

Nov 16, 2017

Modified

Aug 10, 2021

Description

In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.

Solution(s)

suse-upgrade-xorg-x11-serversuse-upgrade-xorg-x11-server-extrasuse-upgrade-xorg-x11-server-sdksuse-upgrade-xorg-x11-server-waylandsuse-upgrade-xorg-x11-xvnc

References

SUSE-SUSE-SU-2017:3025-1
SUSE-SUSE-SU-2017:3047-1
DEBIAN-DSA-4000
BID-101253
GENTOO-GLSA-201710-30
NVD-CVE-2017-13723
UBUNTU-USN-3453-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today