In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack overflow in the endianness conversion of X Events.
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
| Link | Tags |
|---|---|
| https://cgit.freedesktop.org/xorg/xserver/commit/?id=215f894965df5fb0bb45b107d84524e700d2073c | mailing list third party advisory |
| http://www.securityfocus.com/bid/99546 | third party advisory vdb entry |
| http://www.debian.org/security/2017/dsa-3905 | vendor advisory |
| https://cgit.freedesktop.org/xorg/xserver/commit/?id=ba336b24052122b136486961c82deac76bbde455 | mailing list third party advisory |
| https://bugzilla.suse.com/show_bug.cgi?id=1035283 | third party advisory issue tracking |
| https://cgit.freedesktop.org/xorg/xserver/commit/?id=8caed4df36b1f802b4992edcfd282cbeeec35d9d | mailing list third party advisory |